wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354)
CVE-2017-9343: MSNIP dissector crash
Affected versions: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
Fixed versions: 2.2.7, 2.0.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.html
CVE-2017-9344: BT L2CAP dissector divide by zero
Affected versions: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
Fixed versions: 2.2.7, 2.0.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-29.html
CVE-2017-9345: DNS dissector infinite loop
Affected versions: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
Fixed versions: 2.2.7, 2.0.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-26.html
CVE-2017-9346: SoulSeek dissector infinite loop
Affected versions: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
Fixed versions: 2.2.7, 2.0.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-25.html
CVE-2017-9347: ROS dissector crash
Affected versions: 2.2.0 to 2.2.12
Fixed versions: 2.2.7
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-31.html
CVE-2017-9348: DOF dissector read overflow
Affected versions: 2.2.0 to 2.2.12
Fixed versions: 2.2.7
References:
https://www.wireshark.org/security/wnpa-sec-2017-23.html
CVE-2017-9349: DICOM dissector infinite loop
Affected versions: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
Fixed versions: 2.2.7, 2.0.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-27.html
CVE-2017-9350: openSAFETY dissector memory exhaustion
Affected versions: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
Fixed versions: 2.2.7, 2.0.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-28.html
CVE-2017-9351: DHCP dissector read overflow
Affected versions: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
Fixed versions: 2.2.7, 2.0.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-24.html
CVE-2017-9352: Bazaar dissector infinite loop
Affected versions: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
Fixed versions: 2.2.7, 2.0.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-22.html
CVE-2017-9353: IPv6 dissector crash
Affected versions: 2.2.0 to 2.2.6
Fixed versions: 2.2.7
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-33.html
CVE-2017-9354: RGMP dissector crash
Affected versions: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
Fixed versions: 2.2.7, 2.0.13
Reference:
https://www.wireshark.org/security/wnpa-sec-2017-32.html
(from redmine: issue id 7375, created on 2017-06-05, closed on 2017-06-15)
- Relations:
- child #7376 (closed)
- child #7377 (closed)
- child #7378 (closed)
- child #7379 (closed)
- child #7380 (closed)