[3.1] wireshark: multiple issues (CVE-2016-6505, CVE-2016-6506, CVE-2016-6508, CVE-2016-6509, CVE-2016-6510, CVE-2016-6511)
CVE-2016-6505: PacketBB crash
Affected versions: 2.0.0 to 2.0.4, 1.12.0 to 1.12.12
Fixed versions: 2.0.5, 1.12.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2016-41.html
CVE-2016-6506: WSP infinite loop
Affected versions: 2.0.0 to 2.0.4, 1.12.0 to 1.12.12
Fixed versions: 2.0.5, 1.12.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2016-42.html
CVE-2016-6508:RLC long loop
Affected versions: 2.0.0 to 2.0.4, 1.12.0 to 1.12.12
Fixed versions: 2.0.5, 1.12.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2016-44.html
CVE-2016-6509: LDSS dissector crash
Affected versions: 2.0.0 to 2.0.4, 1.12.0 to 1.12.12
Fixed versions: 2.0.5, 1.12.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2016-45.html
CVE-2016-6510: RLC dissector crash
Affected versions: 2.0.0 to 2.0.4, 1.12.0 to 1.12.12
Fixed versions: 2.0.5, 1.12.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2016-46.html
CVE-2016-6511: OpenFlow long loop
Affected versions: 2.0.0 to 2.0.4, 1.12.0 to 1.12.12
Fixed versions: 2.0.5, 1.12.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2016-47.html
(from redmine: issue id 6054, created on 2016-08-17, closed on 2016-09-14)
- Relations:
- parent #6049 (closed)
- Changesets:
- Revision 71e23d72 on 2016-09-12T14:51:15Z:
main/wireshark: security upgrade to 1.12.13. Fixes #6054
CVE-2016-6505, CVE-2016-6506, CVE-2016-6508, CVE-2016-6509, CVE-2016-6510, CVE-2016-6511
(cherry picked from commit f69acd7283a989adcfb4cccf1ce1648af851f990)