LISTSERV - SCIENTIFIC-LINUX-ERRATA Archives

Synopsis:          Moderate: wireshark security and bug fix update
Advisory ID:       SLSA-2020:1047-1
Issue Date:        2020-04-07
CVE Numbers:       CVE-2018-14368
                   CVE-2018-7418
                   CVE-2018-19622
                   CVE-2018-14341
                   CVE-2018-16057
                   CVE-2018-11362
                   CVE-2018-14340
--

* wireshark: Out-of-bounds read in packet-ldss.c
    
* wireshark: Multiple dissectors could crash (wnpa-sec-2018-36)
    
* wireshark: DICOM dissector infinite loop (wnpa-sec-2018-39)
    
* wireshark: Bazaar dissector infinite loop (wnpa-sec-2018-40)
    
* wireshark: SIGCOMP dissector crash in packet-sigcomp.c
    
* wireshark: Radiotap dissector crash
    
* wireshark: Infinite loop in the MMSE dissector
--

SL7
  x86_64
    wireshark-1.10.14-24.el7.x86_64.rpm
    wireshark-1.10.14-24.el7.i686.rpm
    wireshark-gnome-1.10.14-24.el7.x86_64.rpm
    wireshark-debuginfo-1.10.14-24.el7.i686.rpm
    wireshark-debuginfo-1.10.14-24.el7.x86_64.rpm
    wireshark-devel-1.10.14-24.el7.i686.rpm
    wireshark-devel-1.10.14-24.el7.x86_64.rpm

- Scientific Linux Development Team