18 matches found
K000150339: Wireshark/tshark vulnerabilities CVE-2018-9256, CVE-2018-18227, CVE-2018-14370, CVE-2018-14369, and CVE-2018-14367
Security Advisory Description CVE-2018-9256 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the LWAPP dissector could crash. This was addressed in epan/dissectors/packet-lwapp.c by limiting the encapsulation levels to restrict the recursion depth. CVE-2018-18227 In Wireshark 2.6.0 to 2.6.3 and...
SUSE: Security Advisory (SUSE-SU-2018:3282-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2018:3590-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2018:3590-3 Security update for wireshark
This update for wireshark fixes the following issues: Wireshark was updated to 2.4.10 bsc1111647. Following security issues were fixed: - CVE-2018-18227: MS-WSP dissector crash wnpa-sec-2018-47 - CVE-2018-12086: OpcUA dissector crash wnpa-sec-2018-50 Further bug fixes and updated protocol support...
openSUSE Security Update : wireshark (openSUSE-2019-837)
This update for wireshark fixes the following issues : Wireshark was updated to 2.4.10 bsc1111647. Following security issues were fixed : - CVE-2018-18227: MS-WSP dissector crash wnpa-sec-2018-47 - CVE-2018-12086: OpcUA dissector crash wnpa-sec-2018-50 Further bug fixes and updated protocol suppo...
Fedora 28 : 1:wireshark (2018-89413a04e0)
New version 2.6.4, contains security fix for CVE-2018-16056, CVE-2018-16057, CVE-2018-16058, CVE-2018-18225, CVE-2018-18226, CVE-2018-18227, CVE-2018-12086. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...
SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2018:3282-1)
This update for wireshark fixes the following issues : Wireshark was updated to 2.4.10 bsc1111647. Following security issues were fixed : CVE-2018-18227: MS-WSP dissector crash wnpa-sec-2018-47 CVE-2018-12086: OpcUA dissector crash wnpa-sec-2018-50 Further bug fixes and updated protocol support...
SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2018:3590-2)
This update for wireshark fixes the following issues : Wireshark was updated to 2.4.10 bsc1111647. Following security issues were fixed : CVE-2018-18227: MS-WSP dissector crash wnpa-sec-2018-47 CVE-2018-12086: OpcUA dissector crash wnpa-sec-2018-50 Further bug fixes and updated protocol support...
SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2018:3590-1)
This update for wireshark fixes the following issues : Wireshark was updated to 2.4.10 bsc1111647. Following security issues were fixed : CVE-2018-18227: MS-WSP dissector crash wnpa-sec-2018-47 CVE-2018-12086: OpcUA dissector crash wnpa-sec-2018-50 Further bug fixes and updated protocol support...
openSUSE: Security Advisory for wireshark (openSUSE-SU-2018:3368-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Security update for wireshark (important)
This update for wireshark fixes the following issues: Wireshark was updated to 2.4.10 bsc1111647. Following security issues were fixed: - CVE-2018-18227: MS-WSP dissector crash wnpa-sec-2018-47 - CVE-2018-12086: OpcUA dissector crash wnpa-sec-2018-50 Further bug fixes and updated protocol support...
openSUSE Security Update : wireshark (openSUSE-2018-1238)
This update for wireshark fixes the following issues : Wireshark was updated to 2.4.10 bsc1111647. Following security issues were fixed : - CVE-2018-18227: MS-WSP dissector crash wnpa-sec-2018-47 - CVE-2018-12086: OpcUA dissector crash wnpa-sec-2018-50 Further bug fixes and updated protocol suppo...
SUSE-SU-2018:3282-1 Security update for wireshark
This update for wireshark fixes the following issues: Wireshark was updated to 2.4.10 bsc1111647. Following security issues were fixed: - CVE-2018-18227: MS-WSP dissector crash wnpa-sec-2018-47 - CVE-2018-12086: OpcUA dissector crash wnpa-sec-2018-50 Further bug fixes and updated protocol support...
Wireshark 2.4.x < 2.4.10 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 2.4.10. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.10 advisory. - In Wireshark 2.6.0 to 2.6.3 and 2.4.0 to 2.4.9, the MS-WSP protocol dissector could crash. This was addressed ...
Wireshark MS-WSP Dissector Denial of Service Vulnerability (wnpa-sec-2018-47) - Mac OS X
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
Wireshark MS-WSP Dissector Denial of Service Vulnerability (wnpa-sec-2018-47) - Windows
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
Security fix for the ALT Linux 9 package wireshark version 2.6.4-alt1
Oct. 13, 2018 Anton Farygin 2.6.4-alt1 - 2.6.4 fixes: CVE-2018-18227, CVE-2018-18225, CVE-2018-18225, CVE-2018-12086 - disabled build gtk+ UI...
CVE-2018-18227
CVE-2018-18227 affects Wireshark where the MS-WSP protocol dissector could crash. Affected ranges are Wireshark 2.6.0–2.6.3 and 2.4.0–2.4.9. Root cause: NULL return values not handled in epan/dissectors/packet-mswsp.c; remediation is upstream patch to properly handle NULLs. In practice, the vulne...