66 matches found
openSUSE Security Update : wireshark (openSUSE-2017-1158)
This update for wireshark to version 2.2.10 fixes multiple minor security issues. These vulnerabilities that could be used to trigger dissector crashes or infinite loops by making Wireshark read specially crafted packages from the network or a capture file : - CVE-2017-15192: BT ATT dissector cra...
Wireshark 2.2.x < 2.2.10 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.2.10. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.2.10 advisory. - In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system...
Wireshark 2.0.x < 2.0.16 A Vulnerability (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.0.16. It is, therefore, affected by a vulnerability as referenced in the wireshark-2.0.16 advisory. - In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was...
MGASA-2017-0374 Updated wireshark packages fix security vulnerability
DMP dissector crash CVE-2017-15191. BT ATT dissector crash CVE-2017-15192. MBIM dissector crash CVE-2017-15193...
Updated wireshark packages fix security vulnerability
DMP dissector crash CVE-2017-15191...
Updated wireshark packages fix security vulnerability
DMP dissector crash CVE-2017-15191. BT ATT dissector crash CVE-2017-15192. MBIM dissector crash CVE-2017-15193...
MGASA-2017-0375 Updated wireshark packages fix security vulnerability
DMP dissector crash CVE-2017-15191...
Security fix for the ALT Linux 9 package wireshark version 2.4.2-alt1
Oct. 15, 2017 Anton Farygin 2.4.2-alt1 - 2.4.2 - fixes: wnpa-sec-2017-42 BT ATT dissector crash CVE-2017-15192 wnpa-sec-2017-43 MBIM dissector crash CVE-2017-15193 wnpa-sec-2017-44 DMP dissector crash CVE-2017-15191 wnpa-sec-2017-45 RTSP dissector crash CVE-2017-15190 wnpa-sec-2017-46 DOCSIS...
Wireshark Denial of Service Vulnerability (CNVD-2017-30505)
Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in Wireshark versions 2.4.0 through 2.4.1, 2.2.0 through...
CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...
ALPINE-CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...
DEBIAN-CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...
CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...
CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...
Design/Logic Flaw
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...
CVE-2017-15191
CVE-2017-15191 affects Wireshark 2.0.0β2.4.1 (including 2.2.0β2.2.9 and 2.4.0β2.4.1). The DMP dissector contains a length-check flaw in 7βbit string handling that can cause an application crash when processing malformed packets, potentially enabling a denial of service. The issue has been fixed u...
CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...
CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...
CVE-2017-15191
In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length...
KLA11119 Multiple vulnerabilities in Wireshark 2.2.x
Multiple serious vulnerabilities have been found in Wireshark 2.2.x. Malicious users can exploit these vulnerabilities to cause a denial of service. Below is a complete list of vulnerabilities: 1. A string validation error in DMP dissector can be exploited remotely via a malformed packet to cause...