8 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-6248
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ptvcursoradd function in the ptvcursor implementation in epan/proto.c in Wireshark 1.12.x before 1.12.7 does not check whether the expected amount of data i...
wireshark security, bug fix, and enhancement update
1.10.14-7.0.1 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.10.14-7 - Rebase some tvbuff API from upstream to 1.10.14 - Fixes crash when tvblengthremaining is used - Related: CVE-2015-6244 1.10.14-6 - Security patch - Resolves: CVE-2015-3182 1.10.14-5 - Fix crash...
openSUSE Security Update : wireshark (openSUSE-2015-683)
wireshark was updated to version 1.12.8 to fix ten security issues. These security issues were fixed : - CVE-2015-6247: The dissectopenflowtablemodv5 function in epan/dissectors/packet-openflowv5.c in the OpenFlow dissector in Wireshark 1.12.x before 1.12.7 did not validate a certain offset value...
Fedora 22 : wireshark-1.12.7-2.fc22 (2015-13945)
Enable libnl3 see rhbz1207386, rhbz1247566 - Remove airpcap switch doesn't have any effect on Linux - Backport patch no. 11 - Fixed building with F24+ Ver. 1.12.7 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...
Debian DSA-3367-1 : wireshark - security update
Multiple vulnerabilities were discovered in the dissectors/parsers for ZigBee, GSM RLC/MAC, WaveAgent, ptvcursor, OpenFlow, WCCP and in internal functions which could result in denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...
Fedora 23 : wireshark-1.12.7-2.fc23 (2015-13946)
Enable libnl3 see rhbz1207386, rhbz1247566 - Remove airpcap switch doesn't have any effect on Linux - Backport patch no. 11 - Fixed building with F24+ Ver. 1.12.7 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable...
CVE-2015-6248
The ptvcursoradd function in the ptvcursor implementation in epan/proto.c in Wireshark 1.12.x before 1.12.7 does not check whether the expected amount of data is available, which allows remote attackers to cause a denial of service application crash via a crafted packet...
CVE-2015-6248
CVE-2015-6248 affects Wireshark 1.12.x prior to 1.12.7. The ptvcursor_add function in epan/proto.c does not verify that the expected amount of data is available, allowing remote attackers to trigger a denial of service (application crash) by sending a crafted packet. The issue is mitigated by upg...