13 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-9376
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This...
SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2017:1442-1)
Wireshark was updated to version 2.2.6, which brings several new features, enhancements and bug fixes. Thses security issues were fixed : - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...
openSUSE Security Update : wireshark (openSUSE-2016-2923)
This update to wireshark 2.2.2 fixes the following issues : - CVE-2016-9372: Profinet I/O long loop boo1010807 - CVE-2016-9374: AllJoyn crash boo1010752 - CVE-2016-9376: OpenFlow crash boo1010735 - CVE-2016-9373: DCERPC crash boo1010754 - CVE-2016-9375: DTN infinite loop boo1010740 This update al...
[ASA-201611-24] wireshark-qt: multiple issues
Arch Linux Security Advisory ASA-201611-24 ========================================== Severity: High Date : 2016-11-24 CVE-ID : CVE-2016-9373 CVE-2016-9374 CVE-2016-9375 CVE-2016-9376 Package : wireshark-qt Type : multiple issues Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summar...
[ASA-201611-25] wireshark-cli: multiple issues
Arch Linux Security Advisory ASA-201611-25 ========================================== Severity: High Date : 2016-11-24 CVE-ID : CVE-2016-9373 CVE-2016-9374 CVE-2016-9375 CVE-2016-9376 Package : wireshark-cli Type : multiple issues Remote : Yes Link : https://wiki.archlinux.org/index.php/CVE Summa...
Debian DLA-714-1 : wireshark security update
The following vulnerabilities have been discovered in the Debian Wheezy's Wireshark version : CVE-2016-9373 The DCERPC dissector could crash CVE-2016-9374 The AllJoyn dissector could crash CVE-2016-9375 The DTN dissector could ender an infinite loop CVE-2016-9376 The OpenFlow dissector could cras...
[SECURITY] [DLA 714-1] wireshark security update
Package : wireshark Version : 1.12.1+g01b65bf-4+deb8u6deb7u5 CVE ID : CVE-2016-9373 CVE-2016-9374 CVE-2016-9375 CVE-2016-9376 The following vulnerabilities have been discovered in the Debian Wheezys Wireshark version: CVE-2016-9373 The DCERPC dissector could crash CVE-2016-9374 The AllJoyn...
[SECURITY] [DSA 3719-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3719-1 [email protected] https://www.debian.org/security/ Sebastien Delafond November 21, 2016 https://www.debian.org/security/faq -...
Security fix for the ALT Linux 9 package wireshark version 2.2.2-alt1
Nov. 21, 2016 Anton Farygin 2.2.2-alt1 - new version, in which following vulnerabilities have been fixed: CVE-2016-9372 Profinet I/O long loop. CVE-2016-9373 DCERPC crash. CVE-2016-9374 AllJoyn crash. CVE-2016-9375 DTN infinite loop. CVE-2016-9376 OpenFlow crash...
Security fix for the ALT Linux 7 package wireshark version 2.2.2-alt1
Nov. 21, 2016 Anton Farygin 2.2.2-alt1 - new version, in which following vulnerabilities have been fixed: CVE-2016-9372 Profinet I/O long loop. CVE-2016-9373 DCERPC crash. CVE-2016-9374 AllJoyn crash. CVE-2016-9375 DTN infinite loop. CVE-2016-9376 OpenFlow crash...
Wireshark Multiple DoS Vulnerabilities (Nov 2016) - Mac OS X
Wireshark is prone to multiple denial of service DoS vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
CVE-2016-9376
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflowv5.c by ensuring that certain length values were sufficiently large...
CVE-2016-9376
CVE-2016-9376 affects Wireshark 2.2.0–2.2.1 and 2.0.0–2.0.7. The OpenFlow dissector (epan/dissectors/packet-openflow_v5.c) could crash due to memory exhaustion triggered by crafted network traffic or a capture file. The root cause involved unsafe length handling, leading to excessive memory usage...