wireshark: Multiple vulnerabilities (CVE-2017-11406, CVE-2017-11407, CVE-2017-11408, CVE-2017-11409)
CVE-2017-11406: DOCSIS infinite loop
Affected versions: 2.2.0 to 2.2.7, 2.0.0 to 2.0.13
Fixed versions: 2.2.8, 2.0.14
References:
https://www.wireshark.org/security/wnpa-sec-2017-36.html
CVE-2017-11407: MQ dissector crash
Affected versions: 2.2.0 to 2.2.7, 2.0.0 to 2.0.13
Fixed versions: 2.2.8, 2.0.14
References:
https://www.wireshark.org/security/wnpa-sec-2017-35.html
CVE-2017-11408: AMQP dissector crash
Affected versions: 2.2.0 to 2.2.7, 2.0.0 to 2.0.13
Fixed versions: 2.2.8, 2.0.14
References:
https://www.wireshark.org/security/wnpa-sec-2017-34.html
CVE-2017-11409: GPRS LLC dissector large loop.
Affected versions: 2.0.0 to 2.0.13
Fixed versions: 2.0.14
References:
https://www.wireshark.org/security/wnpa-sec-2017-37.html
(from redmine: issue id 7557, created on 2017-07-20, closed on 2017-08-09)
- Relations:
- child #7558 (closed)
- child #7559 (closed)
- child #7560 (closed)
- child #7561 (closed)
- child #7562 (closed)