openSUSE Security Update : wireshark (openSUSE-SU-2012:1067-1)

Wireshark was updated to 1.8.2 : - The DCP ETSI dissector could trigger a zero division. wnpa-sec-2012-13 CVE-2012-4285 - The MongoDB dissector could go into a large loop. wnpa-sec-2012-14 CVE-2012-4287 - The XTP dissector could go into an infinite loop. wnpa-sec-2012-15 CVE-2012-4288 - The ERF...

Mandriva Linux Security Advisory : wireshark (MDVSA-2012:134)

Multiple vulnerabilities was found and corrected in Wireshark : The DCP ETSI dissector could trigger a zero division CVE-2012-4285. The MongoDB dissector could go into a large loop CVE-2012-4287. The XTP dissector could go into an infinite loop CVE-2012-4288. The AFP dissector could go into a lar...

Fedora Update for wireshark FEDORA-2012-12085

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Wireshark 1.8.x < 1.8.2 Multiple Vulnerabilities

The installed version of Wireshark is 1.8.x before 1.8.2. This version is affected by the following vulnerabilities : - The 'DCP ETSI' dissector and 'pcap-ng' parser can attempt a divide by zero operation leading to an application crash. CVE-2012-4285, CVE-2012-4286 - The 'MongoDB', 'XTP', 'AFP',...

CVE-2012-4297

Wireshark GSM RLC MAC dissector (epan/dissectors/packet-gsm_rlcmac.c) contains a buffer overflow in dissect_gsm_rlcmac_downlink, affecting Wireshark 1.6.x before 1.6.10 and 1.8.x before 1.8.2. A malformed packet can allow a remote attacker to execute arbitrary code. Remediation: upgrade to a non-...