[3.1] wireshark: Multiple issues (CVE-2016-2521, CVE-2016-2523, CVE-2016-2530, CVE-2016-2531, CVE-2016-2532)
CVE-2016-2521: DLL hijacking.
Affected versions: 2.0.0 to 2.0.1, 1.12.0 to 1.12.9
Fixed versions: 2.0.2, 1.12.10
https://www.wireshark.org/security/wnpa-sec-2016-01.html
CVE-2016-2523: The DNP3 dissector could go into an infinite loop.
Affected versions: 2.0.0 to 2.0.1, 1.12.0 to 1.12.9
Fixed versions: 2.0.2, 1.12.10
https://www.wireshark.org/security/wnpa-sec-2016-03.html
CVE-2016-2530, CVE-2016-2531: The RSL dissector could crash.
Affected versions: 2.0.0 to 2.0.1, 1.12.0 to 1.12.9
Fixed versions: 2.0.2, 1.12.10
https://www.wireshark.org/security/wnpa-sec-2016-10.html
CVE-2016-2532: The LLRP dissector could crash.
Affected versions: 2.0.0 to 2.0.1, 1.12.0 to 1.12.9
Fixed versions: 2.0.2, 1.12.10
https://www.wireshark.org/security/wnpa-sec-2016-11.html
(from redmine: issue id 5228, created on 2016-03-07, closed on 2016-04-12)
- Relations:
- parent #5225 (closed)
- Changesets:
- Revision f01a94cc on 2016-04-11T10:17:47Z:
main/wireshark: security upgrade to 1.12.10. Fixes #5228
CVE-2016-2521, CVE-2016-2523, CVE-2016-2530, CVE-2016-2531, CVE-2016-2532