10 matches found
SUSE CVE-2015-3815
The detectversion function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not check the length of the payload, which allows remote attackers to cause a denial of service out-of-bounds read and application crash via a packet with a crafted payload, as...
Gentoo Security Advisory GLSA 201510-03
Gentoo Linux Local Security Checks GLSA 201510-03 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
Wireshark Multiple Denial-of-Service Vulnerabilities-01 (Jun 2015) - Mac OS X
Wireshark is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2015-3815
The detectversion function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not check the length of the payload, which allows remote attackers to cause a denial of service out-of-bounds read and application crash via a packet with a crafted payload, as...
CVE-2015-3815
Wireshark 1.12.x (Android Logcat dissector) is affected by CVE-2015-3815: the detect_version function in wiretap/logcat.c does not validate payload length, enabling a crafted packet to trigger an out-of-bounds read and application crash (DoS). This is demonstrated by a payload length of zero. Rem...
CVE-2015-3815
The detectversion function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not check the length of the payload, which allows remote attackers to cause a denial of service out-of-bounds read and application crash via a packet with a crafted payload, as...
openSUSE Security Update : Wireshark (openSUSE-2015-379)
Wireshark was updated to 1.12.5 to fix security issues and bugs. The following vulnerabilities have been fixed : - CVE-2015-3808, CVE-2015-3809: The LBMR dissector could go into an infinite loop. wnpa-sec-2015-12 - CVE-2015-3810: The WebSocket dissector could recurse excessively. wnpa-sec-2015-13...
wireshark-qt: denial of service
CVE-2015-3808 denial of service There is an infinite loop condition in dissectlbmrpser in epan/dissectors/packet-lbmr.c. It's possible for an attacker to set the the variable 'optionlen' to 0, causing the loop to never terminate. This issue is leading to excessive CPU resources consumption by...
wireshark -- multiple vulnerabilities
Wireshark development team reports: The following vulnerabilities have been fixed. wnpa-sec-2015-12 The LBMR dissector could go into an infinite loop. Bug 11036 CVE-2015-3808, CVE-2015-3809 wnpa-sec-2015-13 The WebSocket dissector could recurse excessively. Bug 10989 CVE-2015-3810 wnpa-sec-2015-1...
KLA10586 Denial of service vulnerabilities in Wireshark
An unspecified vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed packet trace. Original advisories Wireshark security advisories Related products...