Overview

File _patchinfo of Package patchinfo.7578

<patchinfo incident="7578">
  <issue id="1094301" tracker="bnc">VUL-0: wireshark: multiple vulnerabilities fixed in 2.6.1, 2.4.7, 2.2.15.</issue>
  <issue id="2018-11362" tracker="cve" />
  <issue id="2018-11358" tracker="cve" />
  <issue id="2018-11359" tracker="cve" />
  <issue id="2018-11356" tracker="cve" />
  <issue id="2018-11357" tracker="cve" />
  <issue id="2018-11360" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>AndreasStieger</packager>
  <description>This update for wireshark fixes vulnerabilities that could be
used to trigger dissector crashes or cause dissectors to go into large infinite
loops by making Wireshark read specially crafted packages from the network or
capture files (bsc#1094301).

This includes:

- CVE-2018-11356: DNS dissector crash 
- CVE-2018-11357: Multiple dissectors could consume excessive memory 
- CVE-2018-11358: Q.931 dissector crash
- CVE-2018-11359: The RRC dissector and other dissectors could crash
- CVE-2018-11360: GSM A DTAP dissector crash 
- CVE-2018-11362: LDSS dissector crash 
</description>
  <summary>Security update for wireshark</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places