Updated wireshark packages fix security vulnerabilities
Publication date: 23 Jul 2018Modification date: 23 Jul 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-7325 , CVE-2018-14339 , CVE-2018-14340 , CVE-2018-14341 , CVE-2018-14342 , CVE-2018-14343 , CVE-2018-14344 , CVE-2018-14368 , CVE-2018-14369
Description
RPKI-Router infinite loop (CVE-2018-7325).
MMSE dissector infinite loop (CVE-2018-14339).
Multiple dissectors could crash (CVE-2018-14340).
DICOM dissector crash (CVE-2018-14341).
BGP dissector large loop (CVE-2018-14342).
ASN.1 BER dissector crash (CVE-2018-14343).
ISMP dissector crash (CVE-2018-14344).
Bazaar dissector infinite loop (CVE-2018-14368).
HTTP2 dissector crash (CVE-2018-14369).
References
- https://bugs.mageia.org/show_bug.cgi?id=23330
- https://www.wireshark.org/security/wnpa-sec-2018-06.html
- https://www.wireshark.org/security/wnpa-sec-2018-34.html
- https://www.wireshark.org/security/wnpa-sec-2018-35.html
- https://www.wireshark.org/security/wnpa-sec-2018-36.html
- https://www.wireshark.org/security/wnpa-sec-2018-37.html
- https://www.wireshark.org/security/wnpa-sec-2018-38.html
- https://www.wireshark.org/security/wnpa-sec-2018-39.html
- https://www.wireshark.org/security/wnpa-sec-2018-40.html
- https://www.wireshark.org/security/wnpa-sec-2018-41.html
- https://www.wireshark.org/docs/relnotes/wireshark-2.2.16.html
- https://www.wireshark.org/news/20180718.html
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7325
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14339
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14340
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14341
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14342
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14343
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14344
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14368
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14369
SRPMS
6/core
- wireshark-2.2.16-1.mga6