Lucene search
+L

1049 matches found

CVE
CVE
added 2017/09/12 5:0 p.m.677 views

CVE-2017-1000251

CVE-2017-1000251 affects the Linux kernel Bluetooth subsystem (BlueZ) in L2CAP processing, causing a stack buffer overflow when handling configuration responses. Affected range includes kernels from 2.6.32 up to 4.13.1. Exploitation could crash the system or, in some deployments, allow remote cod...

8CVSS8AI score0.16181EPSS
Exploits12References21Affected Software1
Debian CVE
Debian CVE
added 2017/09/12 5:0 p.m.61 views

CVE-2017-1000251

The native Bluetooth stack in the Linux Kernel BlueZ, starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space...

8CVSS7.4AI score0.16181EPSS
Exploits12
UbuntuCve
UbuntuCve
added 2017/09/12 1:0 p.m.49 views

CVE-2017-1000251

The native Bluetooth stack in the Linux Kernel BlueZ, starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space...

8CVSS7.3AI score0.16181EPSS
Exploits12References10
Oracle linux
Oracle linux
added 2017/09/12 12:0 a.m.60 views

kernel security update

3.10.0-693.2.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-693.2.2 - net l2cap: prevent stack overflow on incoming bluetooth packet Neil...

8CVSS3AI score0.16181EPSS
Exploits12
ArchLinux
ArchLinux
added 2017/06/12 12:0 a.m.36 views

[ASA-201706-9] wireshark-cli: denial of service

Arch Linux Security Advisory ASA-201706-9 ========================================= Severity: Low Date : 2017-06-12 CVE-ID : CVE-2017-9343 CVE-2017-9344 CVE-2017-9345 CVE-2017-9346 CVE-2017-9347 CVE-2017-9348 CVE-2017-9349 CVE-2017-9350 CVE-2017-9351 CVE-2017-9352 CVE-2017-9353 CVE-2017-9354...

7.8CVSS0.4AI score0.14207EPSS
Exploits4References39
CNVD
CNVD
added 2017/06/06 12:0 a.m.5 views

Wireshark Bluetooth L2CAP Parser Denial of Service Vulnerability

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A denial-of-service vulnerability exists in the Wireshark Bluetooth L2CAP parser, which...

7.5CVSS8.8AI score0.02724EPSS
Exploits0References1
ALT Linux
ALT Linux
added 2017/06/04 12:0 a.m.138 views

Security fix for the ALT Linux 9 package wireshark version 2.2.7-alt1

June 4, 2017 Anton Farygin 2.2.7-alt1 - new version with these security fixes: wnpa-sec-2017-22 Bazaar dissector infinite loop CVE-2017-9352 wnpa-sec-2017-23 DOF dissector read overflow CVE-2017-9348 wnpa-sec-2017-24 DHCP dissector read overflow CVE-2017-9351 wnpa-sec-2017-25 SoulSeek dissector...

7.8CVSS7.8AI score0.14207EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2017/06/02 7:18 a.m.27 views

CVE-2017-9344

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value...

7.5CVSS2.5AI score0.02724EPSS
Exploits0References2
NVD
NVD
added 2017/06/02 5:29 a.m.15 views

CVE-2017-9344

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value...

7.5CVSS7.3AI score0.02724EPSS
Exploits0References7
Prion
Prion
added 2017/06/02 5:29 a.m.28 views

Design/Logic Flaw

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value...

5CVSS6.7AI score0.02724EPSS
Exploits0References7Affected Software2
UbuntuCve
UbuntuCve
added 2017/06/02 5:29 a.m.30 views

CVE-2017-9344

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value...

7.5CVSS6.8AI score0.02724EPSS
Exploits0References5
OSV
OSV
added 2017/06/02 5:29 a.m.19 views

CVE-2017-9344

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value...

7.5CVSS6.5AI score
Exploits0References7
OSV
OSV
added 2017/06/02 5:29 a.m.5 views

UBUNTU-CVE-2017-9344

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value...

7.5CVSS7.1AI score0.02724EPSS
Exploits0References6
Cvelist
Cvelist
added 2017/06/02 5:4 a.m.32 views

CVE-2017-9344

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value...

6.1AI score0.02724EPSS
Exploits0References7
CVE
CVE
added 2017/06/02 5:4 a.m.109 views

CVE-2017-9344

CVE-2017-9344 affects Wireshark’s Bluetooth L2CAP dissector. Versions 2.2.0–2.2.6 and 2.0.0–2.0.12 could trigger a divide-by-zero due to an interval value. Root cause: an interval value was not properly validated in the Bluetooth L2CAP dissector. Mitigation: fixed in epan/dissectors/packet-btl2ca...

7.5CVSS6AI score0.02724EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2017/06/02 5:4 a.m.45 views

CVE-2017-9344

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value...

7.5CVSS2.5AI score0.02724EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2017/06/02 5:4 a.m.80 views

CVE-2017-9344

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value...

7.5CVSS6.3AI score0.02724EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/06/02 12:0 a.m.31 views

Wireshark Multiple Denial-of-Service Vulnerabilities-01 (Jun 2017) - Windows

Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...

7.8CVSS8.5AI score0.03436EPSS
Exploits0References18
OpenVAS
OpenVAS
added 2017/04/19 12:0 a.m.19 views

Wireshark Multiple DoS Vulnerabilities-01 (Apr 2017) - Mac OS X

Wireshark is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.5CVSS8.1AI score0.02205EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2017/04/13 10:18 a.m.21 views

CVE-2016-7957

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings...

7.5CVSS7.5AI score0.01699EPSS
Exploits0References2
Rows per page
Query Builder