Debian Wireshark vulnerabilities

CVE-2012-4049 [LOW] CVE-2012-4049: wireshark - epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.4.x before 1.4.... epan/dissectors/packet-nfs.c in the NFS dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (loop and CPU consumption) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.8.2-1) bullseye: resolved (fixed in 1.8.2-1) forky: resolved (fixed in 1.8.2-1) sid: resolved (f

CVE-2012-0066 [MEDIUM] CVE-2012-0066: wireshark - Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to ... Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a long packet in a (1) Accellent 5Views (aka .5vw) file, (2) I4B trace file, or (3) NETMON 2 capture file. Scope: local bookworm: resolved (fixed in 1.6.5-1) bullseye: resolved (fixed in 1.6.5-1) forky: resolved (fixed in 1.6.5-1) sid:

CVE-2012-6053 [MEDIUM] CVE-2012-6053: wireshark - epan/dissectors/packet-usb.c in the USB dissector in Wireshark 1.6.x before 1.6.... epan/dissectors/packet-usb.c in the USB dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 relies on a length field to calculate an offset value, which allows remote attackers to cause a denial of service (infinite loop) via a zero value for this field. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: resolved (fixed in 1.8.6-1) forky: r

CVE-2012-4295 [LOW] CVE-2012-4295: wireshark - Array index error in the channelised_fill_sdh_g707_format function in epan/disse... Array index error in the channelised_fill_sdh_g707_format function in epan/dissectors/packet-erf.c in the ERF dissector in Wireshark 1.8.x before 1.8.2 might allow remote attackers to cause a denial of service (application crash) via a crafted speed (aka rate) value. Scope: local bookworm: resolved (fixed in 1.8.2-1) bullseye: resolved (fixed in 1.8.2-1) forky: resol

CVE-2012-4285 [LOW] CVE-2012-4285: wireshark - The dissect_pft function in epan/dissectors/packet-dcp-etsi.c in the DCP ETSI di... The dissect_pft function in epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a zero-length message. Scope: local bookworm: resolved (fixed in 1.8.2-1) bullseye: resolved (fixed i

CVE-2012-6062 [MEDIUM] CVE-2012-6062: wireshark - The dissect_rtcp_app function in epan/dissectors/packet-rtcp.c in the RTCP disse... The dissect_rtcp_app function in epan/dissectors/packet-rtcp.c in the RTCP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: resolved (fixed in 1.8.6-1) forky: resolved (fixed in 1.8.6-1) sid: resol

CVE-2012-4289 [LOW] CVE-2012-4289: wireshark - epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x before 1.4.... epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a large number of ACL entries. Scope: local bookworm: resolved (fixed in 1.8.2-1) bullseye: resolved (fixed in 1.8.2-1) forky: resolved (fixed in 1.8.2-1) si

CVE-2012-5238 [LOW] CVE-2012-5238: wireshark - epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.... epan/dissectors/packet-ppp.c in the PPP dissector in Wireshark 1.8.x before 1.8.3 uses incorrect OUI data structures during the decoding of (1) PPP and (2) LCP data, which allows remote attackers to cause a denial of service (assertion failure and application exit) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.2-2) bullseye: resolved (fixed in

CVE-2012-4048 [LOW] CVE-2012-4048: wireshark - The PPP dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.... The PPP dissector in Wireshark 1.4.x before 1.4.14, 1.6.x before 1.6.9, and 1.8.x before 1.8.1 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via a crafted packet, as demonstrated by a usbmon dump. Scope: local bookworm: resolved (fixed in 1.8.2-1) bullseye: resolved (fixed in 1.8.2-1) forky: resolved (fixed i

CVE-2012-6059 [MEDIUM] CVE-2012-6059: wireshark - The dissect_isakmp function in epan/dissectors/packet-isakmp.c in the ISAKMP dis... The dissect_isakmp function in epan/dissectors/packet-isakmp.c in the ISAKMP dissector in Wireshark 1.6.x before 1.6.12 and 1.8.x before 1.8.4 uses an incorrect data structure to determine IKEv2 decryption parameters, which allows remote attackers to cause a denial of service (application crash) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8

CVE-2012-4292 [LOW] CVE-2012-4292: wireshark - The dissect_stun_message function in epan/dissectors/packet-stun.c in the STUN d... The dissect_stun_message function in epan/dissectors/packet-stun.c in the STUN dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 does not properly interact with key-destruction behavior in a certain tree library, which allows remote attackers to cause a denial of service (application crash) via a malformed packet. Scope: local bo

CVE-2012-3825 [LOW] CVE-2012-3825: wireshark - Multiple integer overflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6... Multiple integer overflows in Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allow remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) BACapp and (2) Bluetooth HCI dissectors, a different vulnerability than CVE-2012-2392. Scope: local bookworm: resolved (fixed in 1.6.8-1) bullseye: resolved (fixed in 1.6.8-1) forky: reso

CVE-2012-0042 [LOW] CVE-2012-0042: wireshark - Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform c... Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly perform certain string conversions, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet, related to epan/to_str.c. Scope: local bookworm: resolved (fixed in 1.6.5-1) bullseye: resolved (fixed in 1.6.5-1) forky: resolved (

CVE-2012-6054 [MEDIUM] CVE-2012-6054: wireshark - The dissect_sflow_245_address_type function in epan/dissectors/packet-sflow.c in... The dissect_sflow_245_address_type function in epan/dissectors/packet-sflow.c in the sFlow dissector in Wireshark 1.8.x before 1.8.4 does not properly handle length calculations for an invalid IP address type, which allows remote attackers to cause a denial of service (infinite loop) via a packet that is neither IPv4 nor IPv6. Scope: local bookworm: resolved (fixe

CVE-2012-2394 [LOW] CVE-2012-2394: wireshark - Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 on the SPARC and Itanium pl... Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 on the SPARC and Itanium platforms does not properly perform data alignment for a certain structure member, which allows remote attackers to cause a denial of service (application crash) via a (1) ICMP or (2) ICMPv6 Echo Request packet. Scope: local bookworm: resolved (fixed in 1.6.8-1) bullseye: resolved (fixed in

CVE-2012-4296 [LOW] CVE-2012-4296: wireshark - Buffer overflow in epan/dissectors/packet-rtps2.c in the RTPS2 dissector in Wire... Buffer overflow in epan/dissectors/packet-rtps2.c in the RTPS2 dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (CPU consumption) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.2-1) bullseye: resolved (fixed in 1.8.2-1) forky: resolved (fixed in 1.8.2-1)

CVE-2012-4290 [LOW] CVE-2012-4290: wireshark - The CTDB dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.... The CTDB dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 allows remote attackers to cause a denial of service (loop and CPU consumption) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.2-1) bullseye: resolved (fixed in 1.8.2-1) forky: resolved (fixed in 1.8.2-1) sid: resolved (fixed in 1.8.2-1) trixie: res

CVE-2012-3548 [MEDIUM] CVE-2012-3548: wireshark - The dissect_drda function in epan/dissectors/packet-drda.c in Wireshark 1.6.x th... The dissect_drda function in epan/dissectors/packet-drda.c in Wireshark 1.6.x through 1.6.10 and 1.8.x through 1.8.2 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a small value for a certain length field in a capture file. Scope: local bookworm: resolved (fixed in 1.8.2-2) bullseye: resolved (fixed in 1.8.2-2) forky:

CVE-2012-6055 [MEDIUM] CVE-2012-6055: wireshark - epan/dissectors/packet-3g-a11.c in the 3GPP2 A11 dissector in Wireshark 1.8.x be... epan/dissectors/packet-3g-a11.c in the 3GPP2 A11 dissector in Wireshark 1.8.x before 1.8.4 allows remote attackers to cause a denial of service (infinite loop) via a zero value in a sub-type length field. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: resolved (fixed in 1.8.6-1) forky: resolved (fixed in 1.8.6-1) sid: resolved (fixed in 1.8.6-1) trix

CVE-2012-6057 [MEDIUM] CVE-2012-6057: wireshark - The dissect_eigrp_metric_comm function in epan/dissectors/packet-eigrp.c in the ... The dissect_eigrp_metric_comm function in epan/dissectors/packet-eigrp.c in the EIGRP dissector in Wireshark 1.8.x before 1.8.4 uses the wrong data type for a certain offset value, which allows remote attackers to cause a denial of service (integer overflow and infinite loop) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.8.6-1) bullseye: reso