K000150338: Wireshark/tshark vulnerabilities CVE-2019-10899, CVE-2019-10896, CVE-2019-10895, CVE-2019-10894, and CVE-2018-9263

Security Advisory Description CVE-2019-10899 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC dissector could crash. This was addressed in epan/dissectors/packet-srvloc.c by preventing a heap-based buffer under-read. CVE-2019-10896 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7,...

SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2018:0981-1)

This update for wireshark fixes the following issues : - Update to wireshark 2.2.14, fix such issues : - bsc1088200 VUL-0: wireshark: multiple vulnerabilities fixed in 2.2.14, 2.4.6 - CVE-2018-9256: LWAPP dissector crash - CVE-2018-9260: IEEE 802.15.4 dissector crash - CVE-2018-9261: NBAP dissect...

ALPINE-CVE-2018-9263

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the Kerberos dissector could crash. This was addressed in epan/dissectors/packet-kerberos.c by ensuring a nonzero key length...

CVE-2018-9263

In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the Kerberos dissector could crash. This was addressed in epan/dissectors/packet-kerberos.c by ensuring a nonzero key length...

CVE-2018-9263

Wireshark CVE-2018-9263 affects Kerberos dissector: versions 2.4.0–2.4.5 and 2.2.0–2.2.13 could crash. Root cause: insufficient key length check in Kerberos dissector; fixed in epan/dissectors/packet-kerberos.c by ensuring a nonzero key length. Remediation: upgrade to a fixed release (e.g., Wires...