[SECURITY] [DSA 4101-1] wireshark security update

2018-01-2815:55:47

lists.debian.org

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

71.1%

JSON

Debian Security Advisory DSA-4101-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
January 28, 2018 https://www.debian.org/security/faq

Package : wireshark
CVE ID : CVE-2018-5334 CVE-2018-5335 CVE-2018-5336

It was discovered that wireshark, a network protocol analyzer, contained
several vulnerabilities in the dissectors/file parsers for IxVeriWave,
WCP, JSON, XML, NTP, XMPP and GDB, which could result in denial of
dervice or the execution of arbitrary code.

For the oldstable distribution (jessie), these problems have been fixed
in version (1.12.1+g01b65bf-4+deb8u13.

For the stable distribution (stretch), these problems have been fixed in
version 2.2.6+g32dac6a-2+deb9u2.

We recommend that you upgrade your wireshark packages.

For the detailed security status of wireshark please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/wireshark

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian8i386wireshark-common< 1.12.1+g01b65bf-4+deb8u13wireshark-common_1.12.1+g01b65bf-4+deb8u13_i386.deb
Debian9armellibwiretap-dev< 2.2.6+g32dac6a-2+deb9u2libwiretap-dev_2.2.6+g32dac6a-2+deb9u2_armel.deb
Debian9amd64libwiretap6-dbgsym< 2.2.6+g32dac6a-2+deb9u2libwiretap6-dbgsym_2.2.6+g32dac6a-2+deb9u2_amd64.deb
Debian8i386libwiretap-dev< 1.12.1+g01b65bf-4+deb8u13libwiretap-dev_1.12.1+g01b65bf-4+deb8u13_i386.deb
Debian9mipswireshark-gtk< 2.2.6+g32dac6a-2+deb9u2wireshark-gtk_2.2.6+g32dac6a-2+deb9u2_mips.deb
Debian9i386libwsutil-dev< 2.2.6+g32dac6a-2+deb9u2libwsutil-dev_2.2.6+g32dac6a-2+deb9u2_i386.deb
Debian9i386libwsutil7< 2.2.6+g32dac6a-2+deb9u2libwsutil7_2.2.6+g32dac6a-2+deb9u2_i386.deb
Debian7armelwireshark-dev< 1.12.1+g01b65bf-4+deb8u6~deb7u9wireshark-dev_1.12.1+g01b65bf-4+deb8u6~deb7u9_armel.deb
Debian9mips64elwireshark< 2.2.6+g32dac6a-2+deb9u2wireshark_2.2.6+g32dac6a-2+deb9u2_mips64el.deb
Debian7allwireshark-doc< 1.12.1+g01b65bf-4+deb8u6~deb7u9wireshark-doc_1.12.1+g01b65bf-4+deb8u6~deb7u9_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	8	i386	wireshark-common	< 1.12.1+g01b65bf-4+deb8u13	wireshark-common_1.12.1+g01b65bf-4+deb8u13_i386.deb
Debian	9	armel	libwiretap-dev	< 2.2.6+g32dac6a-2+deb9u2	libwiretap-dev_2.2.6+g32dac6a-2+deb9u2_armel.deb
Debian	9	amd64	libwiretap6-dbgsym	< 2.2.6+g32dac6a-2+deb9u2	libwiretap6-dbgsym_2.2.6+g32dac6a-2+deb9u2_amd64.deb
Debian	8	i386	libwiretap-dev	< 1.12.1+g01b65bf-4+deb8u13	libwiretap-dev_1.12.1+g01b65bf-4+deb8u13_i386.deb
Debian	9	mips	wireshark-gtk	< 2.2.6+g32dac6a-2+deb9u2	wireshark-gtk_2.2.6+g32dac6a-2+deb9u2_mips.deb
Debian	9	i386	libwsutil-dev	< 2.2.6+g32dac6a-2+deb9u2	libwsutil-dev_2.2.6+g32dac6a-2+deb9u2_i386.deb
Debian	9	i386	libwsutil7	< 2.2.6+g32dac6a-2+deb9u2	libwsutil7_2.2.6+g32dac6a-2+deb9u2_i386.deb
Debian	7	armel	wireshark-dev	< 1.12.1+g01b65bf-4+deb8u6~deb7u9	wireshark-dev_1.12.1+g01b65bf-4+deb8u6~deb7u9_armel.deb
Debian	9	mips64el	wireshark	< 2.2.6+g32dac6a-2+deb9u2	wireshark_2.2.6+g32dac6a-2+deb9u2_mips64el.deb
Debian	7	all	wireshark-doc	< 1.12.1+g01b65bf-4+deb8u6~deb7u9	wireshark-doc_1.12.1+g01b65bf-4+deb8u6~deb7u9_all.deb