12 matches found
K000150339: Wireshark/tshark vulnerabilities CVE-2018-9256, CVE-2018-18227, CVE-2018-14370, CVE-2018-14369, and CVE-2018-14367
Security Advisory Description CVE-2018-9256 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the LWAPP dissector could crash. This was addressed in epan/dissectors/packet-lwapp.c by limiting the encapsulation levels to restrict the recursion depth. CVE-2018-18227 In Wireshark 2.6.0 to 2.6.3 and...
SUSE: Security Advisory (SUSE-SU-2018:2412-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:2891-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 28 : 1:wireshark (2018-d56c428f9e)
New version 2.6.2. Security fix for CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE-2018-14342, CVE-2018-14343, CVE-2018-14344, CVE-2018-14367, CVE-2018-14368, CVE-2018-14369, CVE-2018-14370. Note that Tenable Network Security has extracted the preceding description block directly from the...
SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2018:2301-1)
This update for wireshark fixes the following issues: Security issues fixed : - CVE-2018-14342: BGP dissector large loop wnpa-sec-2018-34, bsc1101777 - CVE-2018-14344: ISMP dissector crash wnpa-sec-2018-35, bsc1101788 - CVE-2018-14340: Multiple dissectors could crash wnpa-sec-2018-36, bsc1101804 ...
openSUSE: Security Advisory for wireshark (openSUSE-SU-2018:2184-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : wireshark (openSUSE-2018-793)
This update for wireshark fixes the following issues : Security issues fixed : - CVE-2018-14342: BGP dissector large loop wnpa-sec-2018-34, boo1101777 - CVE-2018-14344: ISMP dissector crash wnpa-sec-2018-35, boo1101788 - CVE-2018-14340: Multiple dissectors could crash wnpa-sec-2018-36, boo1101804...
Security update for wireshark (moderate)
This update for wireshark fixes the following issues: Security issues fixed: - CVE-2018-14342: BGP dissector large loop wnpa-sec-2018-34, boo1101777 - CVE-2018-14344: ISMP dissector crash wnpa-sec-2018-35, boo1101788 - CVE-2018-14340: Multiple dissectors could crash wnpa-sec-2018-36, boo1101804 -...
Fedora 27 : 1:wireshark (2018-9ef52861b5)
New version 2.6.2. Security fix for CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE-2018-14342, CVE-2018-14343, CVE-2018-14344, CVE-2018-14367, CVE-2018-14368, CVE-2018-14369, CVE-2018-14370. Note that Tenable Network Security has extracted the preceding description block directly from the...
Wireshark 2.6.x < 2.6.2 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 2.6.2. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.6.2 advisory. - In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the HTTP2 dissector could crash. This was...
Security fix for the ALT Linux 9 package wireshark version 2.6.2-alt1
July 21, 2018 Anton Farygin 2.6.2-alt1 - 2.6.2 fixes: CVE-2018-14370, CVE-2018-14367, CVE-2018-14369, CVE-2018-14368, CVE-2018-14341, CVE-2018-14339, CVE-2018-14343, CVE-2018-14340, CVE-2018-14344, CVE-2018-14342...
CVE-2018-14367
CVE-2018-14367 affects Wireshark 2.6.0–2.6.1 and 2.4.0–2.4.7, where the CoAP dissector could crash. The root cause is a NULL condition in the CoAP dissector, addressed by adding a proper NULL check in epan/dissectors/packet-coap.c. The referenced fix prevents the crash; no additional exploit deta...