Debian Wireshark vulnerabilities

CVE-2013-3562 [MEDIUM] CVE-2013-3562: wireshark - Multiple integer signedness errors in the tvb_unmasked function in epan/dissecto... Multiple integer signedness errors in the tvb_unmasked function in epan/dissectors/packet-websocket.c in the Websocket dissector in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (application crash) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.7-1) bullseye: resolved (fixed in 1.8.7-1) forky: resolved (fix

CVE-2013-4920 [MEDIUM] CVE-2013-4920: wireshark - The P1 dissector in Wireshark 1.10.x before 1.10.1 does not properly initialize ... The P1 dissector in Wireshark 1.10.x before 1.10.1 does not properly initialize a global variable, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.10.1-1) bullseye: resolved (fixed in 1.10.1-1) forky: resolved (fixed in 1.10.1-1) sid: resolved (fixed in 1.10.1-1) trixi

CVE-2013-4075 [MEDIUM] CVE-2013-4075: wireshark - epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.... epan/dissectors/packet-gmr1_bcch.c in the GMR-1 BCCH dissector in Wireshark 1.8.x before 1.8.8 does not properly initialize memory, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.10.0-1) bullseye: resolved (fixed in 1.10.0-1) forky: resolved (fixed in 1.10.0-1) sid: r

CVE-2013-4082 [MEDIUM] CVE-2013-4082: wireshark - The vwr_read function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wir... The vwr_read function in wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before 1.8.8 does not validate the relationship between a record length and a trailer length, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.10.

CVE-2013-4932 [MEDIUM] CVE-2013-4932: wireshark - Multiple array index errors in epan/dissectors/packet-gsm_a_common.c in the GSM ... Multiple array index errors in epan/dissectors/packet-gsm_a_common.c in the GSM A Common dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allow remote attackers to cause a denial of service (application crash) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.10.1-1) bullseye: resolved (fixed in 1.10.1-1) forky: resolved (fixed in

CVE-2013-4930 [MEDIUM] CVE-2013-4930: wireshark - The dissect_dvbci_tpdu_hdr function in epan/dissectors/packet-dvbci.c in the DVB... The dissect_dvbci_tpdu_hdr function in epan/dissectors/packet-dvbci.c in the DVB-CI dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not validate a certain length value before decrementing it, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted packet. Scope: local bookworm: resol

CVE-2013-4924 [MEDIUM] CVE-2013-4924: wireshark - epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in W... epan/dissectors/packet-dcom-sysact.c in the DCOM ISystemActivator dissector in Wireshark 1.10.x before 1.10.1 does not properly validate certain index values, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.10.1-1) bullseye: resolved (fixed in 1.10

CVE-2013-5721 [MEDIUM] CVE-2013-5721: wireshark - The dissect_mq_rr function in epan/dissectors/packet-mq.c in the MQ dissector in... The dissect_mq_rr function in epan/dissectors/packet-mq.c in the MQ dissector in Wireshark 1.8.x before 1.8.10 and 1.10.x before 1.10.2 does not properly determine when to enter a certain loop, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.10.2-1) bullseye: resolved

CVE-2013-4928 [HIGH] CVE-2013-4928: wireshark - Integer signedness error in the dissect_headers function in epan/dissectors/pack... Integer signedness error in the dissect_headers function in epan/dissectors/packet-btobex.c in the Bluetooth OBEX dissector in Wireshark 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.10.1-1) bullseye: resolved (fixed in 1.10.1-1) forky: resolved (fixed in 1.

CVE-2013-2485 [MEDIUM] CVE-2013-2485: wireshark - The FCSP dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allow... The FCSP dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 allows remote attackers to cause a denial of service (infinite loop) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: resolved (fixed in 1.8.6-1) forky: resolved (fixed in 1.8.6-1) sid: resolved (fixed in 1.8.6-1) trixie: resolved (fixed in 1.8.6-1)

CVE-2013-1583 [LOW] CVE-2013-1583: wireshark - The dissect_version_4_primary_header function in epan/dissectors/packet-dtn.c in... The dissect_version_4_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of service (application crash) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: resolved (fixed

CVE-2013-1585 [LOW] CVE-2013-1585: wireshark - epan/tvbuff.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not p... epan/tvbuff.c in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly validate certain length values for the MS-MMC dissector, which allows remote attackers to cause a denial of service (application crash) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: resolved (fixed in 1.8.6-1) forky: resolved (fixed in 1.8.6-

CVE-2013-2486 [MEDIUM] CVE-2013-2486: wireshark - The dissect_diagnosticrequest function in epan/dissectors/packet-reload.c in the... The dissect_diagnosticrequest function in epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (infinite loop) via crafted integer values in a packet. Scope: local bookworm: resolved (fixed in 1.8.

CVE-2013-1573 [LOW] CVE-2013-1573: wireshark - The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 di... The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly handle a large number of padding bits, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: resolved

CVE-2013-4931 [MEDIUM] CVE-2013-4931: wireshark - epan/proto.c in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows rem... epan/proto.c in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 allows remote attackers to cause a denial of service (loop) via a crafted packet that is not properly handled by the GSM RR dissector. Scope: local bookworm: resolved (fixed in 1.10.1-1) bullseye: resolved (fixed in 1.10.1-1) forky: resolved (fixed in 1.10.1-1) sid: resolved (fixed in 1.10.1-1)

CVE-2013-4929 [HIGH] CVE-2013-4929: wireshark - The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissect... The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not terminate packet-data processing after finding zero remaining bytes, which allows remote attackers to cause a denial of service (loop) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.10.1-1) bullseye:

CVE-2013-1574 [LOW] CVE-2013-1574: wireshark - The dissect_bthci_eir_ad_data function in epan/dissectors/packet-bthci_cmd.c in ... The dissect_bthci_eir_ad_data function in epan/dissectors/packet-bthci_cmd.c in the Bluetooth HCI dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 uses an incorrect data type for a counter variable, which allows remote attackers to cause a denial of service (infinite loop) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.6-1) bul

CVE-2013-1590 [LOW] CVE-2013-1590: wireshark - Buffer overflow in the NTLMSSP dissector in Wireshark 1.6.x before 1.6.13 and 1.... Buffer overflow in the NTLMSSP dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 allows remote attackers to cause a denial of service (application crash) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: resolved (fixed in 1.8.6-1) forky: resolved (fixed in 1.8.6-1) sid: resolved (fixed in 1.8.6-1) trixie: resolved (

CVE-2013-3560 [MEDIUM] CVE-2013-3560: wireshark - The dissect_dsmcc_un_download function in epan/dissectors/packet-mpeg-dsmcc.c in... The dissect_dsmcc_un_download function in epan/dissectors/packet-mpeg-dsmcc.c in the MPEG DSM-CC dissector in Wireshark 1.8.x before 1.8.7 uses an incorrect format string, which allows remote attackers to cause a denial of service (application crash) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.7-1) bullseye: resolved (fixed in 1.8.7-1) fo

CVE-2013-1584 [LOW] CVE-2013-1584: wireshark - The dissect_version_5_and_6_primary_header function in epan/dissectors/packet-dt... The dissect_version_5_and_6_primary_header function in epan/dissectors/packet-dtn.c in the DTN dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 accesses an inappropriate pointer, which allows remote attackers to cause a denial of service (application crash) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: resolved