14 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-5335
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the WCP dissector could crash. This was addressed in epan/dissectors/packet-wcp.c by validating the available...
RHEL 8 : wireshark (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wireshark: free operation on an uninitialized memory address in wiretap/netmon.c CVE-2018-6836 - In...
SUSE: Security Advisory (SUSE-SU-2018:0179-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for wireshark FEDORA-2018-cdf3f8e8b0
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 27 : 1:wireshark (2018-cdf3f8e8b0)
Removing dependency on wireshark metapackage from wireshark-cli ---- Added wireshark-qt to wireshark metapackage ---- - New version 2.4.5 - Contains fixes for CVE-2018-7419, CVE-2018-7418, CVE-2018-7417, CVE-2018-7420, CVE-2018-7320, CVE-2018-7336, CVE-2018-7337, CVE-2018-7334, CVE-2018-7335,...
[SECURITY] [DSA 4101-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4101-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 28, 2018 https://www.debian.org/security/faq -...
[SECURITY] [DLA 1258-1] wireshark security update
Package : wireshark Version : 1.12.1+g01b65bf-4+deb8u6deb7u9 CVE ID : CVE-2018-5334 CVE-2018-5335 CVE-2018-5336 Kamil Frankowicz and Young found that several parsers of wireshark could be crashed by malformed packets. For Debian 7 "Wheezy", these problems have been fixed in version...
SUSE-SU-2018:0191-1 Security update for wireshark
This update for wireshark to version 2.2.12 fixes the following issues: - CVE-2018-5334: IxVeriWave file could crash bsc1075737 - CVE-2018-5335: WCP dissector could crash bsc1075738 - CVE-2018-5336: Multiple dissector crashes bsc1075739 - CVE-2017-17935: Incorrect handling of '\n' in filereadline...
Security fix for the ALT Linux 9 package wireshark version 2.4.4-alt1
Jan. 17, 2018 Anton Farygin 2.4.4-alt1 - 2.4.4 - fixes: wnpa-sec-2018-01 Multiple dissectors could crash. CVE-2018-5336 wnpa-sec-2018-03 The IxVeriWave file parser could crash. CVE-2018-5334 wnpa-sec-2018-04 The WCP dissector could crash. CVE-2018-5335...
MGASA-2018-0071 Updated wireshark packages fix security vulnerabilities
The MRDISC dissector could crash CVE-2017-17997. The IxVeriWave file parser could crash CVE-2018-5334. The WCP dissector could crash CVE-2018-5335. Multiple dissectors could crash CVE-2018-5336. Prior to this release dumpcap enabled the Linux kernel’s BPF JIT compiler via the net.core.bpfjitenabl...
CVE-2018-5335
In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the WCP dissector could crash. This was addressed in epan/dissectors/packet-wcp.c by validating the available buffer length...
CVE-2018-5335
In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the WCP dissector could crash. This was addressed in epan/dissectors/packet-wcp.c by validating the available buffer length...
CVE-2018-5335
Wireshark CVE-2018-5335 affects the WCP dissector. Vulnerable in Wireshark 2.4.0–2.4.3 and 2.2.0–2.2.11; the crash was caused by insufficient buffer length validation in epan/dissectors/packet-wcp.c. The issue has been fixed by adding proper buffer-length validation. Remediation is to upgrade to ...
KLA11176 Multiple DoS vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. A recursion depth error in epan/tvbparse.c can be exploited remotely via a malformed packet to cause denial ...