wireshark: Mutiple issues (CVE-2016-4076, CVE-2016-4077, CVE-2016-4083, CVE-2016-4084)
CVE-2016-4076: The NCP dissector could crash.
It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
Affected versions: 2.0.0 to 2.0.2
Fixed versions: 2.0.3
References:
https://www.wireshark.org/security/wnpa-sec-2016-19.html
CVE-2016-4077: TShark could crash due to a packet reassembly bug.
Affected versions: 2.0.0 to 2.0.2
Fixed versions: 2.0.3
References:
https://www.wireshark.org/security/wnpa-sec-2016-20.html
CVE-2016-4083, CVE-2016-4084: The MS-WSP dissector could crash.
Affected versions: 2.0.0 to 2.0.2
Fixed versions: 2.0.3
References:
https://www.wireshark.org/security/wnpa-sec-2016-27.html
(from redmine: issue id 5621, created on 2016-05-24, closed on 2016-06-23)
- Relations:
- child #5622 (closed)