Lucene search

K
oraclelinux
OracleLinuxELSA-2020-1047
HistoryApr 06, 2020 - 12:00 a.m.

wireshark security and bug fix update

2020-04-0600:00:00
linux.oracle.com
16

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

[1.10.14-24.0.1]

  • Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect
    [1.10.14-24]
  • Related: #1613034 - Typo in the previous patch discovered by covscan
    [1.10.14-23]
  • Related: #1613034 - Fixing an infinite loop created by previous update
    [1.10.14-22]
  • Related: #1633330 - fixing a couple of covscan issues
    [1.10.14-21]
  • Related: #1254543 - removing endian shift in packetlogger because it failed to recognize bluetooth hci packet
    [1.10.14-20]
  • Resolves: #1254543 - valgrind reports errors on pcap file from an older cve
    [1.10.14-19]
  • Related: #1633330 - A few more checks in the packet dissector
    [1.10.14-18]
  • Resolves: #1176967 - wireshark crashes opening large packet captures
    [1.10.14-17]
  • Resolves: #1557212 - CVE-2018-7418 SIGCOMP dissector crash in packet-sigcomp.c
  • Resolves: #1588208 - CVE-2018-11362 Out-of-bounds Read in packet-ldss.c
  • Resolves: #1612146 - CVE-2018-14340 Multiple dissectors could crash
  • Resolves: #1613032 - CVE-2018-14341 DICOM dissector infinite loop
  • Resolves: #1613034 - CVE-2018-14368 Bazaar dissector infinite loop
  • Resolves: #1633330 - CVE-2018-16057 Radiotap dissector crash
  • Resolves: #1660148 - CVE-2018-19622 Infinite loop in the MMSE dissector
How to protect your server from attacks?

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

Related for ELSA-2020-1047