[3.4] wireshark: Multiple vulnerabilities (CVE-2017-11406, CVE-2017-11407, CVE-2017-11408, CVE-2017-11409)
CVE-2017-11406: DOCSIS infinite loop
Affected versions: 2.2.0 to 2.2.7, 2.0.0 to 2.0.13
Fixed versions: 2.2.8, 2.0.14
References:
https://www.wireshark.org/security/wnpa-sec-2017-36.html
CVE-2017-11407: MQ dissector crash
Affected versions: 2.2.0 to 2.2.7, 2.0.0 to 2.0.13
Fixed versions: 2.2.8, 2.0.14
References:
https://www.wireshark.org/security/wnpa-sec-2017-35.html
CVE-2017-11408: AMQP dissector crash
Affected versions: 2.2.0 to 2.2.7, 2.0.0 to 2.0.13
Fixed versions: 2.2.8, 2.0.14
References:
https://www.wireshark.org/security/wnpa-sec-2017-34.html
CVE-2017-11409: GPRS LLC dissector large loop.
Affected versions: 2.0.0 to 2.0.13
Fixed versions: 2.0.14
References:
https://www.wireshark.org/security/wnpa-sec-2017-37.html
(from redmine: issue id 7561, created on 2017-07-20, closed on 2017-08-09)
- Relations:
- parent #7557 (closed)
- Changesets:
- Revision 2a0bb1bc by Francesco Colista on 2017-08-08T15:43:39Z:
main/wireshark: security fix to 2.0.14.
CVE-2017-11406
CVE-2017-11407
CVE-2017-11408
CVE-2017-11409
Fixes #7561