wireshark: CVE-2013-5718 CVE-2013-5719 CVE-2013-5720 CVE-2013-5721 CVE-2013-5722 CVE-2013-4933
https://www.wireshark.org/security/wnpa-sec-2013-55.html
https://bugs.wireshark.org/bugzilla/show\_bug.cgi?id=9005 Access
Denied
crash
CVE-2013-5718
Fixed versions: 1.10.2, 1.8.10
https://www.wireshark.org/security/wnpa-sec-2013-56.html
https://bugs.wireshark.org/bugzilla/show\_bug.cgi?id=9020
http://anonsvn.wireshark.org/viewvc?view=revision&revision=51196
loop
CVE-2013-5719
Fixed versions: 1.10.2, 1.8.10
https://www.wireshark.org/security/wnpa-sec-2013-57.html
https://bugs.wireshark.org/bugzilla/show\_bug.cgi?id=9019 Access
Denied
buffer overflow
CVE-2013-5720
Fixed versions: 1.10.2, 1.8.10
https://www.wireshark.org/security/wnpa-sec-2013-58.html
https://bugs.wireshark.org/bugzilla/show\_bug.cgi?id=9079
http://anonsvn.wireshark.org/viewvc?view=revision&revision=51603
crash; erroneous entry into a loop
CVE-2013-5721
Fixed versions: 1.10.2, 1.8.10
https://www.wireshark.org/security/wnpa-sec-2013-59.html
crash
CVE-2013-5722
Fixed versions: 1.10.2, 1.8.10
https://www.wireshark.org/security/wnpa-sec-2013-60.html
https://bugs.wireshark.org/bugzilla/show\_bug.cgi?id=8742
http://anonsvn.wireshark.org/viewvc?view=revision&revision=49697
We don’t understand why
https://www.wireshark.org/security/wnpa-sec-2013-60.html has different
affected versions than
https://www.wireshark.org/security/wnpa-sec-2013-51.html (they are
both about bug 8742). Thus, we don’t know whether new CVE IDs are
needed.
Fixed versions: 1.10.2, 1.8.10
(from redmine: issue id 2425, created on 2013-11-22, closed on 2013-12-02)
- Relations:
- child #2426 (closed)
- child #2427 (closed)
- Changesets:
- Revision f39890cb by Natanael Copa on 2013-11-26T15:07:06Z:
main/wireshark: security upgrade to 1.8.11 (CVE-2013-5718,CVE-2013-5719,CVE-2013-5720,CVE-2013-5721,CVE-2013-5722,CVE-2013-4933,CVE-2013-6336,CVE-2013-6337,CVE-2013-6338,CVE-2013-6339,CVE-2013-6340)
fixes #2425
fixes #2441