Overview Details

File _patchinfo of Package patchinfo

<patchinfo incident="6661">
  <issue id="1033945" tracker="bnc">VUL-1: CVE-2017-7748: wireshark: WSP dissector could go into an infinite loop (wnpa-sec-2017-21)</issue>
  <issue id="1033944" tracker="bnc">VUL-1: CVE-2017-7747: wireshark: PacketBB dissector could crash (wnpa-sec-2017-18)</issue>
  <issue id="1033941" tracker="bnc">VUL-1: CVE-2017-7705: wireshark: RPC over RDMA dissector could go into an infinite loop (wnpa-sec-2017-15)</issue>
  <issue id="1033940" tracker="bnc">VUL-1: CVE-2017-7704: wireshark: DOF dissector could go into an infinite loop (wnpa-sec-2017-17)</issue>
  <issue id="1033943" tracker="bnc">VUL-1: CVE-2017-7746: wireshark: SLSK dissector could go into an infinite loop (wnpa-sec-2017-19)</issue>
  <issue id="1033942" tracker="bnc">VUL-1: CVE-2017-7745: wireshark: SIGCOMP dissector could go into an infinite loop (wnpa-sec-2017-20)</issue>
  <issue id="1033938" tracker="bnc">VUL-1: CVE-2017-7702: wireshark: WBXML dissector could go into an infinite loop (wnpa-sec-2017-13)</issue>
  <issue id="1033939" tracker="bnc">VUL-1: CVE-2017-7703: wireshark: IMAP dissector could crash (wnpa-sec-2017-12)</issue>
  <issue id="1033936" tracker="bnc">VUL-1: CVE-2017-7700: wireshark: NetScaler file parser could go into an infinite loop (wnpa-sec-2017-14)</issue>
  <issue id="1033937" tracker="bnc">VUL-1: CVE-2017-7701: wireshark: BGP dissector could go into an infinite loop (wnpa-sec-2017-16)</issue>
  <issue id="2017-7700" tracker="cve" />
  <issue id="2017-7701" tracker="cve" />
  <issue id="2017-7702" tracker="cve" />
  <issue id="2017-7703" tracker="cve" />
  <issue id="2017-7704" tracker="cve" />
  <issue id="2017-7705" tracker="cve" />
  <issue id="2017-7748" tracker="cve" />
  <issue id="2017-7745" tracker="cve" />
  <issue id="2017-7746" tracker="cve" />
  <issue id="2017-7747" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>AndreasStieger</packager>
  <description>This update to Wireshark 2.2.6 fixes minor vulnerabilities that could be used to trigger a dissector crash
or infinite loops by sending specially crafted packages over the network or into a capture file:

  * CVE-2017-7700: NetScaler file parser infinite loop (boo#1033936)
  * CVE-2017-7701: BGP dissector infinite loop (boo#1033937)
  * CVE-2017-7702: WBMXL dissector infinite loop (boo#1033938)
  * CVE-2017-7703: IMAP dissector crash (boo#1033939)
  * CVE-2017-7704: DOF dissector infinite loop (boo#1033940)
  * CVE-2017-7705: RPCoRDMA dissector infinite loop (boo#1033941)
  * CVE-2017-7745: SIGCOMP dissector infinite loop (boo#1033942)
  * CVE-2017-7746: SLSK dissector long loop (boo#1033943)
  * CVE-2017-7747: PacketBB dissector crash (boo#1033944)
  * CVE-2017-7748: WSP dissector infinite loop (boo#1033945)
</description>
  <summary>Security update for wireshark</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places