[3.8] wireshark: Multiple vulnerabilities (CVE-2018-12086, CVE-2018-18227)
CVE-2018-12086: OpcUa dissector crash
Affected versions: 2.6.0 to 2.6.3, 2.4.0 to 2.4.9
Fixed versions: 2.6.4, 2.4.10
References:
https://www.wireshark.org/security/wnpa-sec-2018-50.html
CVE-2018-18227: MS-WSP dissector crash
Affected versions: 2.6.0 to 2.6.3, 2.4.0 to 2.4.9
Fixed versions: 2.6.4, 2.4.10
References:
https://www.wireshark.org/security/wnpa-sec-2018-47.html
https://www.wireshark.org/security/wnpa-sec-2018-48.html
(from redmine: issue id 9603, created on 2018-10-29, closed on 2018-10-30)
- Relations:
- parent #9601 (closed)
- Changesets:
- Revision e6bc061b by Natanael Copa on 2018-10-29T17:19:05Z:
community/wireshark: security upgrade to 2.4.10
CVE-2018-12086, CVE-2018-18227
fixes #9603- Revision 81a1590f by Natanael Copa on 2019-02-06T13:35:45Z:
community/wireshark: security upgrade to 2.4.10
CVE-2018-12086, CVE-2018-18227
fixes #9603
To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information