SHA256
1
0
forked from pool/wireshark

* CVE-2017-7700: NetScaler file parser infinite loop (bsc#1033936)

* CVE-2017-7701: BGP dissector infinite loop (bsc#1033937)
  * CVE-2017-7702: WBMXL dissector infinite loop (bsc#1033938)
  * CVE-2017-7703: IMAP dissector crash (bsc#1033939)
  * CVE-2017-7704: DOF dissector infinite loop (bsc#1033940)
  * CVE-2017-7705: RPCoRDMA dissector infinite loop (bsc#1033941)
  * CVE-2017-7745: SIGCOMP dissector infinite loop (bsc#1033942)
  * CVE-2017-7746: SLSK dissector long loop (bsc#1033943)
  * CVE-2017-7747: PacketBB dissector crash (bsc#1033944)
  * CVE-2017-7748: WSP dissector infinite loop (bsc#1033945)

OBS-URL: https://build.opensuse.org/package/show/network:utilities/wireshark?expand=0&rev=208
This commit is contained in:
Andreas Stieger 2017-04-14 08:53:34 +00:00 committed by Git OBS Bridge
parent a6fc1fc415
commit bb6540ad8a

View File

@ -1,20 +1,20 @@
------------------------------------------------------------------- -------------------------------------------------------------------
Thu Apr 13 07:23:41 UTC 2017 - astieger@suse.com Fri Apr 14 08:46:58 UTC 2017 - astieger@suse.com
- Wireshark 2.2.6: - Wireshark 2.2.6:
This release fixes minor vulnerabilities that could be used to This release fixes minor vulnerabilities that could be used to
trigger a dissector crash or infinite loops by sending specially trigger a dissector crash or infinite loops by sending specially
crafted packages over the network or into a capture file: crafted packages over the network or into a capture file:
* CVE-2017-7703: IMAP dissector crash (wnpa-sec-2017-12) * CVE-2017-7700: NetScaler file parser infinite loop (bsc#1033936)
* CVE-2017-7702: WBMXL dissector infinite loop (wnpa-sec-2017-13) * CVE-2017-7701: BGP dissector infinite loop (bsc#1033937)
* CVE-2017-7700: NetScaler file parser infinite loop (wnpa-sec-2017-14) * CVE-2017-7702: WBMXL dissector infinite loop (bsc#1033938)
* CVE-2017-7705: RPCoRDMA dissector infinite loop (wnpa-sec-2017-15) * CVE-2017-7703: IMAP dissector crash (bsc#1033939)
* CVE-2017-7701: BGP dissector infinite loop (wnpa-sec-2017-16) * CVE-2017-7704: DOF dissector infinite loop (bsc#1033940)
* CVE-2017-7704: DOF dissector infinite loop (wnpa-sec-2017-17) * CVE-2017-7705: RPCoRDMA dissector infinite loop (bsc#1033941)
* PacketBB dissector crash (wnpa-sec-2017-18) * CVE-2017-7745: SIGCOMP dissector infinite loop (bsc#1033942)
* SLSK dissector long loop (wnpa-sec-2017-19) * CVE-2017-7746: SLSK dissector long loop (bsc#1033943)
* SIGCOMP dissector infinite loop (wnpa-sec-2017-20) * CVE-2017-7747: PacketBB dissector crash (bsc#1033944)
* WSP dissector infinite loop (wnpa-sec-2017-21) * CVE-2017-7748: WSP dissector infinite loop (bsc#1033945)
- Further bug fixes and updated protocol support as listed in: - Further bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-2.2.6.html https://www.wireshark.org/docs/relnotes/wireshark-2.2.6.html