9 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-6470
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet injection or a malformed capture file. This was addressed i...
[SECURITY] [DSA 3811-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3811-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 18, 2017 https://www.debian.org/security/faq -...
Fedora 25 : wireshark (2017-6c91c98b33)
Security fix for Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
CVE-2017-6470
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-iax2.c by constraining packet lateness...
Wireshark 2.2.x < 2.2.5 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.2.5. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.5 advisory. - In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet...
Wireshark Multiple DoS Vulnerabilities (Mar 2017) - Mac OS X
Wireshark is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
UBUNTU-CVE-2017-6470
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-iax2.c by constraining packet lateness...
CVE-2017-6470
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-iax2.c by constraining packet lateness...
CVE-2017-6470
CVE-2017-6470 affects Wireshark 2.2.0–2.2.4 and 2.0.0–2.0.10. The issue is an IAX2 dissector infinite loop triggered by crafted packets or malformed captures. Root cause: the IAX2 dissector (epan/dissectors/packet-iax2.c) could loop due to lateness handling. Mitigation: the code was fixed by cons...