9 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-6471
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a WSP infinite loop, triggered by packet injection or a malformed capture file. This was addressed in...
[SECURITY] [DSA 3811-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3811-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 18, 2017 https://www.debian.org/security/faq -...
Fedora 25 : wireshark (2017-6c91c98b33)
Security fix for Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenable...
CVE-2017-6471
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a WSP infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by validating the capability length...
Wireshark Multiple DoS Vulnerabilities (Mar 2017) - Mac OS X
Wireshark is prone to multiple denial of service vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Wireshark 2.2.x < 2.2.5 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.2.5. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.5 advisory. - In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet...
CVE-2017-6471
CVE-2017-6471 affects Wireshark 2.0.0–2.0.10 and 2.2.0–2.2.4. The vulnerability is in the WSP dissector, where an infinite loop can be triggered by crafted packets or malformed captures due to insufficient validation of the capability length. The root cause is an inadequate check in epan/dissecto...
CVE-2017-6471
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a WSP infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by validating the capability length...
CVE-2017-6471
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a WSP infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by validating the capability length...