CVE-2018-19622 – wireshark: Infinite loop in the MMSE dissector
https://notcve.org/view.php?id=CVE-2018-19622
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows. En Wireshark, de la versión 2.6.0 a la 2.6.4 y de la versión 2.4.0 a la 2.4.10, el disector MMSE podría entrar en un bucle infinito. Esto se trató en epan/dissectors/packet-mmse.c evitando desbordamientos de longitud. A vulnerability in MMSE dissector allows Wireshark to loop infinitely when parsing a specially crafted pcap file. • http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html http://www.securityfocus.com/bid/106051 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15250 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=3b7555d32d11862f0e500ec466ad6bfe54190076 https://lists.debian.org/debian-lts-announce/2019/01/msg00010.html https://www.debian.org/security/2018/dsa-4359 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.wireshark.org/security/wnpa-sec-2018 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVE-2018-19627 – Wireshark - 'find_signature' Heap Out-of-Bounds Read
https://notcve.org/view.php?id=CVE-2018-19627
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary. En Wireshark 2.6.0 a 2.6.4 y 2.4.0 a 02/04/2010, el analizador IxVeriWave de archivos podría cerrarse inesperadamente. Esto se abordó en wiretap/vwr.c ajustando un límite de búfer. Wireshark suffers from a heap out-of-bounds read in find_signature. • https://www.exploit-db.com/exploits/45951 http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html http://www.securityfocus.com/bid/106051 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15279 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=bdc33cfaecb1b4cf2c114ed9015713ddf8569a60 https://www.debian.org/security/2018/dsa-4359 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.wireshark.org/security/wnpa-sec-2018-55.html • CWE-125: Out-of-bounds Read •
CVE-2018-19623
https://notcve.org/view.php?id=CVE-2018-19623
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values. En Wireshark 2.6.0 a 2.6.4 y 2.4.0 a 2.4.10, el disector LBMPDM podría cerrarse inesperadamente. Además, un atacante remoto podría escribir datos arbitrarios a cualquier ubicación de memoria antes de la memoria en el alcance del paquete. • http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html http://www.securityfocus.com/bid/106051 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15132 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=9c8645ec7b28e4d7193962ecd2a418613bf6a84f https://lists.debian.org/debian-lts-announce/2019/01/msg00010.html https://www.debian.org/security/2018/dsa-4359 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.wireshark.org/security/wnpa-sec-2018 • CWE-787: Out-of-bounds Write •
CVE-2018-19628
https://notcve.org/view.php?id=CVE-2018-19628
In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error. En Wireshark desde la versión 2.6.0 hasta la 2.6.4, el disector ZigBee ZCL podría cerrarse inesperadamente. Esto se abordó en epan/dissectors/packet-zbee-zcl-lighting.c evitando un error de división entre cero. • http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html http://www.securityfocus.com/bid/106051 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15281 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=212b18825d9b668cda23d334c48867dfa66b2b36 https://www.debian.org/security/2018/dsa-4359 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.wireshark.org/security/wnpa-sec-2018-57.html • CWE-369: Divide By Zero •
CVE-2018-19624
https://notcve.org/view.php?id=CVE-2018-19624
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference. En Wireshark 2.6.0 a 2.6.4 y 2.4.0 a 2.4.10, el disector PVFS podría cerrarse inesperadamente. Esto se abordó en epan/dissectors/packet-pvfs2.c evitando una desreferencia de puntero NULL. • http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html http://www.securityfocus.com/bid/106051 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15280 https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=3e319db1107b08fc3be804b6d449143ec9aa0dec https://lists.debian.org/debian-lts-announce/2019/01/msg00010.html https://www.debian.org/security/2018/dsa-4359 https://www.oracle.com/security-alerts/cpuapr2020.html https://www.wireshark.org/security/wnpa-sec-2018 • CWE-476: NULL Pointer Dereference •