Wireshark 2.0.x < 2.0.12 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.0.12. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.0.12 advisory. - In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinit...

Wireshark 2.0.x < 2.0.14 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 2.0.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.0.14 advisory. - In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY dissector could crash or exhaust system...

Linux Distros Unpatched Vulnerability : CVE-2017-7702

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file...

SUSE: Security Advisory (SUSE-SU-2017:1442-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security fix for the ALT Linux 9 package wireshark version 2.2.8-alt1

July 21, 2017 Anton Farygin 2.2.8-alt1 - new version: wnpa-sec-2017-13 WBMXL dissector infinite loop CVE-2017-7702, CVE-2017-11410 wnpa-sec-2017-28 openSAFETY dissector memory exhaustion CVE-2017-9350, CVE-2017-11411 wnpa-sec-2017-34 AMQP dissector crash CVE-2017-11408 wnpa-sec-2017-35 MQ dissect...

Code injection

In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding validation of the relationships between indexes and lengths. NOTE: thi...

CVE-2017-11410

CVE-2017-11410 affects Wireshark WBXML dissector. Versions affected: Wireshark 2.0.x up to 2.0.13 and 2.2.x up to 2.2.7. Root cause: incomplete fix for CVE-2017-7702 leading to potential infinite loop when processing certain WBXML data (triggered by crafted packets or PCAP). Impact: denial of ser...

GLSA-201706-12 : Wireshark: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201706-12 Wireshark: Multiple vulnerabilities Multiple vulnerabilities have been discovered in Wireshark. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could entice a user to process a...

SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2017:1442-1)

Wireshark was updated to version 2.2.6, which brings several new features, enhancements and bug fixes. Thses security issues were fixed : - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...

SUSE-SU-2017:1442-1 Security update for wireshark

Wireshark was updated to version 2.2.6, which brings several new features, enhancements and bug fixes. Thses security issues were fixed: - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...

SUSE-SU-2017:1174-1 Security update for wireshark

Wireshark was updated to version 2.0.12, which brings several new features, enhancements and bug fixes. These security issues were fixed: - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in...

openSUSE Security Update : wireshark (openSUSE-2017-503)

This update to Wireshark 2.2.6 fixes minor vulnerabilities that could be used to trigger a dissector crash or infinite loops by sending specially crafted packages over the network or into a capture file : - CVE-2017-7700: NetScaler file parser infinite loop boo1033936 - CVE-2017-7701: BGP dissect...

Wireshark 2.2.x < 2.2.6 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.2.6. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.6 advisory. - In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite...

Security fix for the ALT Linux 7 package wireshark version 2.2.6-alt1.M70P.1

April 14, 2017 Anton Farygin 2.2.6-alt1.M70P.1 - new version with these security fixes: wnpa-sec-2017-12 IMAP dissector crash CVE-2017-7703 wnpa-sec-2017-13 WBMXL dissector infinite loop CVE-2017-7702 wnpa-sec-2017-14 NetScaler file parser infinite loop CVE-2017-7700 wnpa-sec-2017-15 RPCoRDMA...

Security fix for the ALT Linux 9 package wireshark version 2.2.6-alt1

April 14, 2017 Anton Farygin 2.2.6-alt1 - new version with these security fixes: wnpa-sec-2017-12 IMAP dissector crash CVE-2017-7703 wnpa-sec-2017-13 WBMXL dissector infinite loop CVE-2017-7702 wnpa-sec-2017-14 NetScaler file parser infinite loop CVE-2017-7700 wnpa-sec-2017-15 RPCoRDMA dissector...

CVE-2017-7702

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding length validation...

CVE-2017-7702

In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding length validation...