Lucene search
Ubuntu.comUB:CVE-2015-2188HistoryMar 08, 2015 - 12:00 a.m.
CVE-2015-2188
2015-03-0800:00:00
ubuntu.com
ubuntu.com
12
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
51.4%
epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x
before 1.10.13 and 1.12.x before 1.12.4 does not properly initialize a data
structure, which allows remote attackers to cause a denial of service
(out-of-bounds read and application crash) via a crafted packet that is
improperly handled during decompression.
Bugs
- <https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=10844>
- <https://bugs.launchpad.net/bugs/1440202>
Notes
| Author | Note |
|---|---|
| tyhicks | Version 1.12.0 to 1.12.3, 1.10.0 to 1.10.12 are affected |
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 17.10 | noarch | wireshark | <Â 1.12.1+g01b65bf-4 | UNKNOWN |
| ubuntu | 18.04 | noarch | wireshark | <Â 2.6.3-1~ubuntu18.04.1 | UNKNOWN |
| ubuntu | 14.04 | noarch | wireshark | <Â 2.6.3-1~ubuntu14.04.1 | UNKNOWN |
| ubuntu | 14.10 | noarch | wireshark | <Â 1.12.1+g01b65bf-2ubuntu14.10.3 | UNKNOWN |
| ubuntu | 15.04 | noarch | wireshark | <Â 1.12.1+g01b65bf-4 | UNKNOWN |
| ubuntu | 15.10 | noarch | wireshark | <Â 1.12.1+g01b65bf-4 | UNKNOWN |
| ubuntu | 16.04 | noarch | wireshark | <Â 2.6.3-1~ubuntu16.04.1 | UNKNOWN |
| ubuntu | 16.10 | noarch | wireshark | <Â 1.12.1+g01b65bf-4 | UNKNOWN |
| ubuntu | 17.04 | noarch | wireshark | <Â 1.12.1+g01b65bf-4 | UNKNOWN |
Related
prion
prion
Out-of-bounds
2015-03-08 02:59:00
Design/Logic Flaw
2015-05-26 15:59:00
cve
cve
CVE-2015-2188
2015-03-08 02:59:00
CVE-2015-3811
2015-05-26 15:59:00
debiancve
debiancve
CVE-2015-2188
2015-03-08 02:59:00
CVE-2015-3811
2015-05-26 15:59:00
cvelist
cvelist
CVE-2015-2188
2015-03-08 02:00:00
CVE-2015-3811
2015-05-26 15:00:00
ubuntucve
ubuntucve
CVE-2015-3811
2015-05-26 00:00:00
securityvulns
securityvulns
wireshark multiple security vulnerabilities
2015-04-09 00:00:00
[SECURITY] [DSA 3210-1] wireshark security update
2015-04-09 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-3210-1)
2015-03-30 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0653-1)
2021-06-09 00:00:00
Mageia: Security Advisory (MGASA-2015-0117)
2022-01-28 00:00:00
nessus
nessus
Debian DSA-3210-1 : wireshark - security update
2015-04-02 00:00:00
Mandriva Linux Security Advisory : wireshark (MDVSA-2015:183)
2015-03-31 00:00:00
SuSE 11.3 Security Update : wireshark (SAT Patch Number 10444)
2015-04-02 00:00:00
debian
debian
[SECURITY] [DSA 3210-1] wireshark security update
2015-03-31 17:31:53
[SECURITY] [DLA 198-1] wireshark security update
2015-04-22 09:45:46
mageia
mageia
Updated wireshark package fixes security vulnerabilies
2015-03-28 00:12:10
kaspersky
kaspersky
KLA10518 Denial of service vulnerabilities in Wireshark
2015-03-07 00:00:00
osv
osv
wireshark - security update
2015-04-22 00:00:00
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2015-10-31 00:00:00
oraclelinux
oraclelinux
wireshark security, bug fix, and enhancement update
2015-11-23 00:00:00
redhat
redhat
centos
centos
wireshark security update
2015-11-30 19:55:40
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
51.4%
Related for UB:CVE-2015-2188