Download
| Alert*
oval:org.secpod.oval:def:43534
The host is installed with Wireshark 2.4.0 to 2.4.3 or 2.2.0 to 2.2.11 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle exceptional conditions. Successful exploitation allows attackers to cause an application crash. oval:org.secpod.oval:def:89002343 This update for wireshark to version 2.2.12 fixes the following issues: - CVE-2018-5334: IxVeriWave file could crash - CVE-2018-5335: WCP dissector could crash - CVE-2018-5336: Multiple dissector crashes - CVE-2017-17935: Incorrect handling of quot;\nquot; in file_read_line function could have le ... oval:org.secpod.oval:def:89002443 This update for wireshark to version 2.2.12 fixes the following issues: - CVE-2018-5334: IxVeriWave file could crash - CVE-2018-5335: WCP dissector could crash - CVE-2018-5336: Multiple dissector crashes - CVE-2017-17935: Incorrect handling of quot;\nquot; in file_read_line function could have le ... oval:org.secpod.oval:def:2101646 In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the WCP dissector could crash. This was addressed in epan/dissectors/packet-wcp.c by validating the available buffer length. oval:org.secpod.oval:def:1800908 CVE-2018-5334: IxVeriWave file parser crash¶ Affected versions: 2.4.0 to 2.4.3, 2.2.0 to 2.2.11Fixed versions: 2.4.4, 2.2.12 oval:org.secpod.oval:def:53240 It was discovered that wireshark, a network protocol analyzer, contained several vulnerabilities in the dissectors/file parsers for IxVeriWave, WCP, JSON, XML, NTP, XMPP and GDB, which could result in denial of dervice or the execution of arbitrary code. oval:org.secpod.oval:def:603254 It was discovered that wireshark, a network protocol analyzer, contained several vulnerabilities in the dissectors/file parsers for IxVeriWave, WCP, JSON, XML, NTP, XMPP and GDB, which could result in denial of dervice or the execution of arbitrary code. oval:org.secpod.oval:def:1800315 CVE-2017-17997: MRDISC dissector crash Affected versions: 2.2.0 to 2.2.11Fixed versions: 2.2.12 oval:org.secpod.oval:def:43558 The host is installed with Wireshark 2.4.0 to 2.4.3 or 2.2.0 to 2.2.11 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly handle exceptional conditions. Successful exploitation allows attackers to cause an application crash. oval:org.secpod.oval:def:114876 Metapackage with installs wireshark-cli and wireshark-qt. oval:org.secpod.oval:def:114600 Metapackage with installs wireshark-cli and wireshark-qt. oval:org.secpod.oval:def:114200 Metapackage with installs wireshark-cli and wireshark-qt. |