CVE-2018-9260
- EPSS 2.57%
- Veröffentlicht 04.04.2018 07:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:14
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the IEEE 802.15.4 dissector could crash. This was addressed in epan/dissectors/packet-ieee802154.c by ensuring that an allocation step occurs.
CVE-2018-9261
- EPSS 2.94%
- Veröffentlicht 04.04.2018 07:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:14
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop that ends with a heap-based buffer overflow. This was addressed in epan/dissectors/packet-nbap.c by prohibiting the self-linking of DCH-IDs.
CVE-2018-9262
- EPSS 2.34%
- Veröffentlicht 04.04.2018 07:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:14
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the VLAN dissector could crash. This was addressed in epan/dissectors/packet-vlan.c by limiting VLAN tag nesting to restrict the recursion depth.
CVE-2018-9263
- EPSS 2.57%
- Veröffentlicht 04.04.2018 07:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:14
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the Kerberos dissector could crash. This was addressed in epan/dissectors/packet-kerberos.c by ensuring a nonzero key length.
CVE-2018-9264
- EPSS 2.65%
- Veröffentlicht 04.04.2018 07:29:00
- Zuletzt bearbeitet 21.11.2024 04:15:14
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the ADB dissector could crash with a heap-based buffer overflow. This was addressed in epan/dissectors/packet-adb.c by checking for a length inconsistency.
CVE-2018-7330
- EPSS 2.17%
- Veröffentlicht 23.02.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 04:12:01
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thread.c had an infinite loop that was addressed by using a correct integer data type.
CVE-2018-7331
- EPSS 2.39%
- Veröffentlicht 23.02.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 04:12:02
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-ber.c had an infinite loop that was addressed by validating a length.
CVE-2018-7332
- EPSS 2.39%
- Veröffentlicht 23.02.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 04:12:02
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-reload.c had an infinite loop that was addressed by validating a length.
CVE-2018-7333
- EPSS 2.19%
- Veröffentlicht 23.02.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 04:12:02
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpcrdma.c had an infinite loop that was addressed by validating a chunk size.
CVE-2018-7334
- EPSS 2.72%
- Veröffentlicht 23.02.2018 22:29:01
- Zuletzt bearbeitet 21.11.2024 04:12:02
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the UMTS MAC dissector could crash. This was addressed in epan/dissectors/packet-umts_mac.c by rejecting a certain reserved value.