[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Wireshark - (bulletinapr2017)

ID: oval:org.secpod.oval:def:2100984Date: (C)2019-12-03   (M)2022-10-10
Class: PATCHFamily: unix




In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a WSP infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by validating the capability length.

Platform:
Sun Solaris 11
Product:
diagnostic/wireshark
diagnostic/wireshark/wireshark-common
diagnostic/wireshark/tshark
Reference:
bulletinapr2017
CVE-2017-6471
CVE-2017-6467
CVE-2017-6468
CVE-2017-6469
CVE-2017-6470
CVE-2017-6472
CVE-2017-6473
CVE-2017-6474
CVE    8
CVE-2017-6473
CVE-2017-6474
CVE-2017-6468
CVE-2017-6469
...
CPE    1
cpe:/o:oracle:solaris:11

© SecPod Technologies