aports issues
https://gitlab.alpinelinux.org/alpine/aports/-/issues
2019-07-23T11:52:50Z
https://gitlab.alpinelinux.org/alpine/aports/-/issues/7380
[3.3] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-...
2019-07-23T11:52:50Z
Alicha CH
[3.3] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9354)
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.htm...
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.html
CVE-2017-9344: BT L2CAP dissector divide by zero
------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-29.html
CVE-2017-9345: DNS dissector infinite loop
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-26.html
CVE-2017-9346: SoulSeek dissector infinite loop
-----------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-25.html
CVE-2017-9347: ROS dissector crash
----------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-31.html
CVE-2017-9348: DOF dissector read overflow
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### References:
https://www.wireshark.org/security/wnpa-sec-2017-23.html
CVE-2017-9349: DICOM dissector infinite loop
--------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-27.html
CVE-2017-9350: openSAFETY dissector memory exhaustion
-----------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-28.html
**CVE-2017-9351**: DHCP dissector read overflow
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-24.html
CVE-2017-9352: Bazaar dissector infinite loop
---------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-22.html
CVE-2017-9354: RGMP dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-32.html
*(from redmine: issue id 7380, created on 2017-06-05, closed on 2017-06-15)*
* Relations:
* parent #7375
* Changesets:
* Revision 9a266b0bdb88c3710446f1c69818d9ecf8ce4d75 on 2017-06-13T09:47:45Z:
```
community/wireshark: security upgrade to 2.0.13
CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346,
CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350,
CVE-2017-9351, CVE-2017-9352, CVE-2017-9354
Fixes #7380
```
3.3.4
Natanael Copa
Natanael Copa
https://gitlab.alpinelinux.org/alpine/aports/-/issues/7379
[3.4] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-...
2019-07-23T11:52:51Z
Alicha CH
[3.4] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9354)
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.htm...
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.html
CVE-2017-9344: BT L2CAP dissector divide by zero
------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-29.html
CVE-2017-9345: DNS dissector infinite loop
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-26.html
CVE-2017-9346: SoulSeek dissector infinite loop
-----------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-25.html
CVE-2017-9347: ROS dissector crash
----------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-31.html
CVE-2017-9348: DOF dissector read overflow
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### References:
https://www.wireshark.org/security/wnpa-sec-2017-23.html
CVE-2017-9349: DICOM dissector infinite loop
--------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-27.html
CVE-2017-9350: openSAFETY dissector memory exhaustion
-----------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-28.html
**CVE-2017-9351**: DHCP dissector read overflow
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-24.html
CVE-2017-9352: Bazaar dissector infinite loop
---------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-22.html
CVE-2017-9354: RGMP dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-32.html
*(from redmine: issue id 7379, created on 2017-06-05, closed on 2017-06-15)*
* Relations:
* parent #7375
* Changesets:
* Revision c391ebdf94fe2d08dd67176f88fa086e00472396 on 2017-06-13T09:46:52Z:
```
community/wireshark: security upgrade to 2.0.13
CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346,
CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350,
CVE-2017-9351, CVE-2017-9352, CVE-2017-9354
Fixes #7379
```
3.4.7
Natanael Copa
Natanael Copa
https://gitlab.alpinelinux.org/alpine/aports/-/issues/7378
[3.5] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-...
2019-07-23T11:52:52Z
Alicha CH
[3.5] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354)
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.htm...
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.html
CVE-2017-9344: BT L2CAP dissector divide by zero
------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-29.html
CVE-2017-9345: DNS dissector infinite loop
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-26.html
CVE-2017-9346: SoulSeek dissector infinite loop
-----------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-25.html
CVE-2017-9347: ROS dissector crash
----------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-31.html
CVE-2017-9348: DOF dissector read overflow
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### References:
https://www.wireshark.org/security/wnpa-sec-2017-23.html
CVE-2017-9349: DICOM dissector infinite loop
--------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-27.html
CVE-2017-9350: openSAFETY dissector memory exhaustion
-----------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-28.html
**CVE-2017-9351**: DHCP dissector read overflow
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-24.html
CVE-2017-9352: Bazaar dissector infinite loop
---------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-22.html
CVE-2017-9353: IPv6 dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-33.html
CVE-2017-9354: RGMP dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-32.html
*(from redmine: issue id 7378, created on 2017-06-05, closed on 2017-06-15)*
* Relations:
* parent #7375
* Changesets:
* Revision 429bab63b290e2cd8589f4f83a4c369c72460450 on 2017-06-13T09:43:34Z:
```
community/wireshark: security upgrade to 2.2.7
CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346,
CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350,
CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354
Fixes #7378
```
3.5.3
Natanael Copa
Natanael Copa
https://gitlab.alpinelinux.org/alpine/aports/-/issues/7377
[3.6] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-...
2019-07-23T11:52:54Z
Alicha CH
[3.6] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354)
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.htm...
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.html
CVE-2017-9344: BT L2CAP dissector divide by zero
------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-29.html
CVE-2017-9345: DNS dissector infinite loop
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-26.html
CVE-2017-9346: SoulSeek dissector infinite loop
-----------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-25.html
CVE-2017-9347: ROS dissector crash
----------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-31.html
CVE-2017-9348: DOF dissector read overflow
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### References:
https://www.wireshark.org/security/wnpa-sec-2017-23.html
CVE-2017-9349: DICOM dissector infinite loop
--------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-27.html
CVE-2017-9350: openSAFETY dissector memory exhaustion
-----------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-28.html
**CVE-2017-9351**: DHCP dissector read overflow
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-24.html
CVE-2017-9352: Bazaar dissector infinite loop
---------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-22.html
CVE-2017-9353: IPv6 dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-33.html
CVE-2017-9354: RGMP dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-32.html
*(from redmine: issue id 7377, created on 2017-06-05, closed on 2017-06-15)*
* Relations:
* parent #7375
3.6.2
Natanael Copa
Natanael Copa
https://gitlab.alpinelinux.org/alpine/aports/-/issues/7376
[3.7] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-...
2019-07-23T11:52:55Z
Alicha CH
[3.7] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354)
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.htm...
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.html
CVE-2017-9344: BT L2CAP dissector divide by zero
------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-29.html
CVE-2017-9345: DNS dissector infinite loop
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-26.html
CVE-2017-9346: SoulSeek dissector infinite loop
-----------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-25.html
CVE-2017-9347: ROS dissector crash
----------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-31.html
CVE-2017-9348: DOF dissector read overflow
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### References:
https://www.wireshark.org/security/wnpa-sec-2017-23.html
CVE-2017-9349: DICOM dissector infinite loop
--------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-27.html
CVE-2017-9350: openSAFETY dissector memory exhaustion
-----------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-28.html
**CVE-2017-9351**: DHCP dissector read overflow
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-24.html
CVE-2017-9352: Bazaar dissector infinite loop
---------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-22.html
CVE-2017-9353: IPv6 dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-33.html
CVE-2017-9354: RGMP dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-32.html
*(from redmine: issue id 7376, created on 2017-06-05, closed on 2017-06-15)*
* Relations:
* parent #7375
* Changesets:
* Revision 012e5b8ddaa5ad3353e0df651fd6b2f2097705ab on 2017-06-13T09:12:10Z:
```
community/wireshark: security upgrade to 2.2.7
CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346,
CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350,
CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354
Fixes #7376
```
* Revision e60cdc58fdbbe1c315e9327497e04e61dd8bd4b4 on 2017-06-13T09:23:53Z:
```
community/wireshark: security upgrade to 2.2.7
CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346,
CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350,
CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354
Fixes #7376
```
3.7.0
Natanael Copa
Natanael Copa
https://gitlab.alpinelinux.org/alpine/aports/-/issues/7375
wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-2017-9...
2019-07-23T11:52:56Z
Alicha CH
wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354)
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.htm...
CVE-2017-9343: MSNIP dissector crash
------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-30.html
CVE-2017-9344: BT L2CAP dissector divide by zero
------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-29.html
CVE-2017-9345: DNS dissector infinite loop
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-26.html
CVE-2017-9346: SoulSeek dissector infinite loop
-----------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-25.html
CVE-2017-9347: ROS dissector crash
----------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-31.html
CVE-2017-9348: DOF dissector read overflow
------------------------------------------
**Affected versions**: 2.2.0 to 2.2.12
**Fixed versions**: 2.2.7
### References:
https://www.wireshark.org/security/wnpa-sec-2017-23.html
CVE-2017-9349: DICOM dissector infinite loop
--------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-27.html
CVE-2017-9350: openSAFETY dissector memory exhaustion
-----------------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-28.html
**CVE-2017-9351**: DHCP dissector read overflow
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-24.html
CVE-2017-9352: Bazaar dissector infinite loop
---------------------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-22.html
CVE-2017-9353: IPv6 dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6
**Fixed versions**: 2.2.7
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-33.html
CVE-2017-9354: RGMP dissector crash
-----------------------------------
**Affected versions**: 2.2.0 to 2.2.6, 2.0.0 to 2.0.12
**Fixed versions**: 2.2.7, 2.0.13
### Reference:
https://www.wireshark.org/security/wnpa-sec-2017-32.html
*(from redmine: issue id 7375, created on 2017-06-05, closed on 2017-06-15)*
* Relations:
* child #7376
* child #7377
* child #7378
* child #7379
* child #7380
Natanael Copa
Natanael Copa