SHA256
1
0
forked from pool/wireshark
Andreas Stieger 2017-06-02 09:23:45 +00:00 committed by Git OBS Bridge
parent 853177eea3
commit ecdedd15b2

View File

@ -1,23 +1,23 @@
------------------------------------------------------------------- -------------------------------------------------------------------
Fri Jun 2 09:14:54 UTC 2017 - astieger@suse.com Fri Jun 2 09:21:15 UTC 2017 - astieger@suse.com
- Wireshark 2.2.7 (bsc#1042324): - Wireshark 2.2.7 (bsc#1042330):
This release fixes minor vulnerabilities that could be used to This release fixes minor vulnerabilities that could be used to
trigger dissector crashes, infinite loopsm or cause excessive use trigger dissector crashes, infinite loopsm or cause excessive use
of CPU resources by making Wireshark read specially crafted of CPU resources by making Wireshark read specially crafted
packages from the network or a capture file: packages from the network or a capture file:
* CVE-2017-9352: Bazaar dissector infinite loop (wnpa-sec-2017-22) * CVE-2017-9352: Bazaar dissector infinite loop (bsc#1042304)
* CVE-2017-9348: DOF dissector read overflow (wnpa-sec-2017-23) * CVE-2017-9348: DOF dissector read overflow (bsc#1042303)
* CVE-2017-9351: DHCP dissector read overflow (wnpa-sec-2017-24) * CVE-2017-9351: DHCP dissector read overflow (bsc#1042302)
* CVE-2017-9346: SoulSeek dissector infinite loop (wnpa-sec-2017-25) * CVE-2017-9346: SoulSeek dissector infinite loop (bsc#1042301)
* CVE-2017-9345: DNS dissector infinite loop (wnpa-sec-2017-26) * CVE-2017-9345: DNS dissector infinite loop (bsc#1042300)
* CVE-2017-9349: DICOM dissector infinite loop (wnpa-sec-2017-27) * CVE-2017-9349: DICOM dissector infinite loop (bsc#1042305)
* CVE-2017-9350: openSAFETY dissector memory exhaustion (wnpa-sec-2017-28) * CVE-2017-9350: openSAFETY dissector memory exhaustion (bsc#1042299)
* CVE-2017-9344: BT L2CAP dissector divide by zero (wnpa-sec-2017-29) * CVE-2017-9344: BT L2CAP dissector divide by zero (bsc#1042298)
* CVE-2017-9343: MSNIP dissector crash (wnpa-sec-2017-30) * CVE-2017-9343: MSNIP dissector crash (bsc#1042309)
* CVE-2017-9347: ROS dissector crash (wnpa-sec-2017-31) * CVE-2017-9347: ROS dissector crash (bsc#1042308)
* CVE-2017-9354: RGMP dissector crash (wnpa-sec-2017-32) * CVE-2017-9354: RGMP dissector crash (bsc#1042307)
* CVE-2017-9353: IPv6 dissector crash (wnpa-sec-2017-33) * CVE-2017-9353: IPv6 dissector crash (bsc#1042306)
------------------------------------------------------------------- -------------------------------------------------------------------
Wed May 17 09:51:33 UTC 2017 - astieger@suse.com Wed May 17 09:51:33 UTC 2017 - astieger@suse.com