Overview Details Repositories Revisions Requests Users Attributes Meta
Security update for wireshark

This update for wireshark fixes minor vulnerabilities that could be used to trigger dissector crashes, infinite loops,
or cause excessive use of CPU resources by making Wireshark read specially crafted packages from the network or a capture file:

- CVE-2017-9352: Bazaar dissector infinite loop (boo#1042304)
- CVE-2017-9348: DOF dissector read overflow (boo#1042303)
- CVE-2017-9351: DHCP dissector read overflow (boo#1042302)
- CVE-2017-9346: SoulSeek dissector infinite loop (boo#1042301)
- CVE-2017-9345: DNS dissector infinite loop (boo#1042300)
- CVE-2017-9349: DICOM dissector infinite loop (boo#1042305)
- CVE-2017-9350: openSAFETY dissector memory exhaustion (boo#1042299)
- CVE-2017-9344: BT L2CAP dissector divide by zero (boo#1042298)
- CVE-2017-9343: MSNIP dissector crash (boo#1042309)
- CVE-2017-9347: ROS dissector crash (boo#1042308)
- CVE-2017-9354: RGMP dissector crash (boo#1042307)
- CVE-2017-9353: IPv6 dissector crash (boo#1042306)

Fixed bugs
bnc#1042330
VUL-0: TRACKERBUG: wireshark: 2.2.7 security update
bnc#1042309
VUL-1: CVE-2017-9343: wireshark: MSNIP dissector crash (wnpa-sec-2017-30)
bnc#1042308
VUL-1: CVE-2017-9347: wireshark: ROS dissector crash (wnpa-sec-2017-31)
bnc#1042299
VUL-1: CVE-2017-9350: wireshark: openSAFETY dissector memory exhaustion (wnpa-sec-2017-28)
bnc#1042298
VUL-1: CVE-2017-9344: wireshark: BT L2CAP dissector divide by zero (wnpa-sec-2017-29)
bnc#1042303
VUL-1: CVE-2017-9348: wireshark: DOF dissector read overflow (wnpa-sec-2017-23)
bnc#1042302
VUL-1: CVE-2017-9351: wireshark: DHCP dissector read overflow (wnpa-sec-2017-24)
bnc#1042301
VUL-0: CVE-2017-9346: wireshark: SoulSeek dissector infinite loop (wnpa-sec-2017-25)
bnc#1042300
VUL-1: CVE-2017-9345: wireshark: DNS dissector infinite loop (wnpa-sec-2017-26)
bnc#1042307
VUL-1: CVE-2017-9354: wireshark: RGMP dissector crash (wnpa-sec-2017-32)
bnc#1042306
VUL-1: CVE-2017-9353: wireshark: IPv6 dissector crash (wnpa-sec-2017-33)
bnc#1042305
VUL-1: CVE-2017-9349: wireshark: DICOM dissector infinite loop (wnpa-sec-2017-27)
bnc#1042304
VUL-1: CVE-2017-9352: wireshark: Bazaar dissector infinite loop (wnpa-sec-2017-22)
CVE-2017-9347
CVE-2017-9348
CVE-2017-9349
CVE-2017-9343
CVE-2017-9351
CVE-2017-9350
CVE-2017-9353
CVE-2017-9352
CVE-2017-9346
CVE-2017-9354
CVE-2017-9344
CVE-2017-9345
Selected Binaries
openSUSE Build Service is sponsored by
Places