4 matches found
Wireshark 2.4.x < 2.4.1 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.1 advisory. - In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an infinite...
SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2017:2555-1)
This update for wireshark to version 2.2.9 fixes several issues. These security issues were fixed : - CVE-2017-13767: The MSDP dissector could have gone into an infinite loop. This was addressed by adding length validation bsc1056248. - CVE-2017-13766: The Profinet I/O dissector could have crash...
CVE-2017-13766
In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash with an out-of-bounds write. This was addressed in plugins/profinet/packet-dcerpc-pn-io.c by adding string validation...
CVE-2016-9372
CVE-2016-9372 affects Wireshark 2.2.0–2.2.1, where the Profinet I/O dissector could loop excessively in response to network traffic or a capture file. The root cause is input with too many I/O objects, leading to a potential denial of service via resource exhaustion. The remediation implemented i...