https://bugzilla.novell.com/show_bug.cgi?id=807942 https://bugzilla.novell.com/show_bug.cgi?id=807942#c0 Summary: wireshark update to 1.8.6 Classification: openSUSE Product: openSUSE 12.3 Version: RC 2 Platform: All OS/Version: openSUSE 12.2 Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: Andreas.Stieger@gmx.de QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux i686; rv:19.0) Gecko/20100101 Firefox/19.0 A bugfix release for Wireshark fixes security issues and bugs.
From https://www.wireshark.org/docs/relnotes/wireshark-1.8.6.html
The TCP dissector could crash. wnpa-sec-2013-10 CVE-2013-2475 The HART/IP dissectory could go into an infinite loop. wnpa-sec-2013-11 CVE-2013-2476 The CSN.1 dissector could crash. wnpa-sec-2013-12 CVE-2013-2477 The MS-MMS dissector could crash. wnpa-sec-2013-13 CVE-2013-2478 The MPLS Echo dissector could go into an infinite loop. wnpa-sec-2013-14 CVE-2013-2479 The RTPS and RTPS2 dissectors could crash. wnpa-sec-2013-15 CVE-2013-2480 The Mount dissector could crash. wnpa-sec-2013-16 CVE-2013-2481 The AMPQ dissector could go into an infinite loop. wnpa-sec-2013-17 CVE-2013-2482 The ACN dissector could attempt to divide by zero. wnpa-sec-2013-18 CVE-2013-2483 The CIMD dissector could crash. wnpa-sec-2013-19 CVE-2013-2484 The FCSP dissector could go into an infinite loop. wnpa-sec-2013-20 CVE-2013-2485 The RELOAD dissector could go into an infinite loop. wnpa-sec-2013-21 CVE-2013-2486 CVE-2013-2487 The DTLS dissector could crash. wnpa-sec-2013-22 CVE-2013-2488 Reproducible: Always Some of these also affect the oldstable 1.6.x series (in SLE) for which 1.6.14 is available. https://www.wireshark.org/docs/relnotes/wireshark-1.6.14.html -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.