Project

General

Profile

Bug #9601

wireshark: Multiple vulnerabilities (CVE-2018-12086, CVE-2018-18225, CVE-2018-18226, CVE-2018-18227)

Added by Alicha CH 7 months ago. Updated 7 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Security
Target version:
-
Start date:
10/29/2018
Due date:
% Done:

100%

Estimated time:
(Total: 0.00 h)
Affected versions:
Security IDs:

Description

CVE-2018-12086: OpcUa dissector crash

Affected versions: 2.6.0 to 2.6.3, 2.4.0 to 2.4.9
Fixed versions: 2.6.4, 2.4.10

References:

https://www.wireshark.org/security/wnpa-sec-2018-50.html

CVE-2018-18225: CoAP dissector crash

Affected versions: 2.6.0 to 2.6.3
Fixed versions: 2.6.4

References:

https://www.wireshark.org/security/wnpa-sec-2018-49.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15172

CVE-2018-18226: Steam IHS Discovery dissector memory leak

Affected versions: 2.6.0 to 2.6.3
Fixed versions: 2.6.4

References:

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15171
https://www.wireshark.org/security/wnpa-sec-2018-48.html

CVE-2018-18227: MS-WSP dissector crash

Affected versions: 2.6.0 to 2.6.3, 2.4.0 to 2.4.9
Fixed versions: 2.6.4, 2.4.10

References:

https://www.wireshark.org/security/wnpa-sec-2018-47.html
https://www.wireshark.org/security/wnpa-sec-2018-48.html


Subtasks

Bug #9602: [3.9] wireshark: Multiple vulnerabilities (CVE-2018-12086, CVE-2018-18225, CVE-2018-18226, CVE-2018-18227)ClosedNatanael Copa

Bug #9603: [3.8] wireshark: Multiple vulnerabilities (CVE-2018-12086, CVE-2018-18227)ClosedNatanael Copa

History

#1 Updated by Alicha CH 7 months ago

  • Project changed from Alpine Security to Alpine Linux
  • Category set to Security
  • Status changed from New to Closed
  • Security IDs deleted (CVE-2018-12086, CVE-2018-18225, CVE-2018-18226, CVE-2018-18227)

Also available in: Atom PDF