SUSE CVE-2018-7320

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets...

Mageia: Security Advisory (MGASA-2018-0151)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:0867-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2018:0811-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES11 Security Update : wireshark (SUSE-SU-2018:0867-1)

This update for wireshark fixes the following issues: Security issue fixed bsc1082692 : - CVE-2018-7335: The IEEE 802.11 dissector could crash wnpa-sec-2018-05 - CVE-2018-7321: thrift long dissector loop dissectthriftmap - CVE-2018-7322: DICOM: inifinite loop dissectdcmtag - CVE-2018-7323: WCCP:...

Fedora Update for wireshark FEDORA-2018-cdf3f8e8b0

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 27 : 1:wireshark (2018-cdf3f8e8b0)

Removing dependency on wireshark metapackage from wireshark-cli ---- Added wireshark-qt to wireshark metapackage ---- - New version 2.4.5 - Contains fixes for CVE-2018-7419, CVE-2018-7418, CVE-2018-7417, CVE-2018-7420, CVE-2018-7320, CVE-2018-7336, CVE-2018-7337, CVE-2018-7334, CVE-2018-7335,...

SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2018:0811-1)

This update for wireshark fixes the following issues: Security issue fixed bsc1082692 : - CVE-2018-7335: The IEEE 802.11 dissector could crash wnpa-sec-2018-05 - CVE-2018-7321: thrift long dissector loop dissectthriftmap - CVE-2018-7322: DICOM: inifinite loop dissectdcmtag - CVE-2018-7323: WCCP:...

FreeBSD : wireshark -- multiple security issues (c5ab620f-4576-4ad5-b51f-93e4fec9cd0e)

wireshark developers reports : wnpa-sec-2018-05. IEEE 802.11 dissector crash. CVE-2018-7335 wnpa-sec-2018-06. Large or infinite loops in multiple dissectors. CVE-2018-7321 through CVE-2018-7333 wnpa-sec-2018-07. UMTS MAC dissector crash. CVE-2018-7334 wnpa-sec-2018-08. DOCSIS dissector crash...

Security fix for the ALT Linux 9 package wireshark version 2.4.5-alt1

Feb. 26, 2018 Anton Farygin 2.4.5-alt1 - 2.4.5 - fixes: wnpa-sec-2018-05 The IEEE 802.11 dissector could crash. CVE-2018-7335 wnpa-sec-2018-06 Multiple dissectors could go into large infinite loops. All ASN.1 BER dissectors, along with the DICOM, DMP, LLTD, OpenFlow, RELOAD, RPCoRDMA, RPKI-Router...

Wireshark Security Updates (wnpa-sec-2018-05 to wnpa-sec-2018-14) - Windows

Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...

CVE-2018-7320

Wireshark SIGCOMP dissector vulnerability CVE-2018-7320: affected Wireshark 2.4.0–2.4.4 and 2.2.0–2.2.12; crash caused by missing validation of operand offsets in packet-sigcomp.c. Exploitation via malformed packets may crash the dissector; no explicit exploitation details provided. The issue is ...

KLA11201 Multiple vulnerabilities in Wireshark

Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. An improper operand validation offsets in the SIGCOMP protocol dissector can be exploited remotely via...