Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

wireshark: security update to 2.6.2 #1299

Closed
l2dy opened this issue Jul 24, 2018 · 3 comments

Comments

@l2dy
Copy link
Contributor

commented Jul 24, 2018

https://www.wireshark.org/docs/relnotes/wireshark-2.6.2.html

The following vulnerabilities have been fixed:

wnpa-sec-2018-34

BGP dissector large loop. Bug 13741. CVE-2018-14342.

wnpa-sec-2018-35

ISMP dissector crash. Bug 14672. CVE-2018-14344.

wnpa-sec-2018-36

Multiple dissectors could crash. Bug 14675. CVE-2018-14340.

wnpa-sec-2018-37

ASN.1 BER dissector crash. Bug 14682. CVE-2018-14343.

wnpa-sec-2018-38

MMSE dissector infinite loop. Bug 14738. CVE-2018-14339.

wnpa-sec-2018-39

DICOM dissector crash. Bug 14742. CVE-2018-14341.

wnpa-sec-2018-40

Bazaar dissector infinite loop. Bug 14841. CVE-2018-14368.

wnpa-sec-2018-41

HTTP2 dissector crash. Bug 14869. CVE-2018-14369.

wnpa-sec-2018-42

CoAP dissector crash. Bug 14966. CVE-2018-14367.
@l2dy

This comment has been minimized.

Copy link
Contributor Author

commented Jul 24, 2018

Adding wnpa-sec-2018-43. IEEE 802.11 dissector crash. Bug 14686. CVE-2018-14370.

MingcongBai added a commit that referenced this issue Jul 26, 2018

@MingcongBai

This comment has been minimized.

Copy link
Member

commented Jul 26, 2018

Fixed with b77d3c1. Closing.

@l2dy

This comment has been minimized.

Copy link
Contributor Author

commented Jul 27, 2018

Use AOSA-2018-0324.

MingcongBai added a commit that referenced this issue Aug 15, 2018

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
2 participants
You can’t perform that action at this time.