Debian Wireshark vulnerabilities

CVE-2008-4684 [MEDIUM] CVE-2008-4684: wireshark - packet-frame in Wireshark 0.99.2 through 1.0.3 does not properly handle exceptio... packet-frame in Wireshark 0.99.2 through 1.0.3 does not properly handle exceptions thrown by post dissectors, which allows remote attackers to cause a denial of service (application crash) via a certain series of packets, as demonstrated by enabling the (1) PRP or (2) MATE post dissector. Scope: local bookworm: resolved (fixed in 1.0.4-1) bullseye: resolved (fixed

CVE-2008-3932 [MEDIUM] CVE-2008-3932: wireshark - Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allows attackers to cause a de... Wireshark (formerly Ethereal) 0.9.7 through 1.0.2 allows attackers to cause a denial of service (hang) via a crafted NCP packet that triggers an infinite loop. Scope: local bookworm: resolved (fixed in 1.0.3-1) bullseye: resolved (fixed in 1.0.3-1) forky: resolved (fixed in 1.0.3-1) sid: resolved (fixed in 1.0.3-1) trixie: resolved (fixed in 1.0.3-1)

CVE-2008-1070 [MEDIUM] CVE-2008-1070: wireshark - The SCTP dissector in Wireshark (formerly Ethereal) 0.99.5 through 0.99.7 allows... The SCTP dissector in Wireshark (formerly Ethereal) 0.99.5 through 0.99.7 allows remote attackers to cause a denial of service (crash) via a malformed packet. Scope: local bookworm: resolved (fixed in 0.99.8-1) bullseye: resolved (fixed in 0.99.8-1) forky: resolved (fixed in 0.99.8-1) sid: resolved (fixed in 0.99.8-1) trixie: resolved (fixed in 0.99.8-1)

CVE-2008-4682 [MEDIUM] CVE-2008-4682: wireshark - wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a deni... wtap.c in Wireshark 0.99.7 through 1.0.3 allows remote attackers to cause a denial of service (application abort) via a malformed Tamos CommView capture file (aka .ncf file) with an "unknown/unexpected packet type" that triggers a failed assertion. Scope: local bookworm: resolved (fixed in 1.0.4-1) bullseye: resolved (fixed in 1.0.4-1) forky: resolved (fixed in 1.

CVE-2008-3137 [MEDIUM] CVE-2008-3137: wireshark - The GSM SMS dissector in Wireshark (formerly Ethereal) 0.99.2 through 1.0.0 allo... The GSM SMS dissector in Wireshark (formerly Ethereal) 0.99.2 through 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors. Scope: local bookworm: resolved (fixed in 1.0.1-1) bullseye: resolved (fixed in 1.0.1-1) forky: resolved (fixed in 1.0.1-1) sid: resolved (fixed in 1.0.1-1) trixie: resolved (fixed in 1.0.1-1)

CVE-2008-5285 [MEDIUM] CVE-2008-5285: wireshark - Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of service... Wireshark 1.0.4 and earlier allows remote attackers to cause a denial of service via a long SMTP request, which triggers an infinite loop. Scope: local bookworm: resolved (fixed in 1.0.5-1) bullseye: resolved (fixed in 1.0.5-1) forky: resolved (fixed in 1.0.5-1) sid: resolved (fixed in 1.0.5-1) trixie: resolved (fixed in 1.0.5-1)

CVE-2008-1562 [MEDIUM] CVE-2008-1562: wireshark - The LDAP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.8 allows... The LDAP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet, a different vulnerability than CVE-2006-5740. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2008-4685 [MEDIUM] CVE-2008-4685: wireshark - Use-after-free vulnerability in the dissect_q931_cause_ie function in packet-q93... Use-after-free vulnerability in the dissect_q931_cause_ie function in packet-q931.c in the Q.931 dissector in Wireshark 0.10.3 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via certain packets that trigger an exception. Scope: local bookworm: resolved (fixed in 1.0.4-1) bullseye: resolved (fixed in 1.0.4-1) forky:

CVE-2008-3140 [MEDIUM] CVE-2008-3140: wireshark - The syslog dissector in Wireshark (formerly Ethereal) 1.0.0 allows remote attack... The syslog dissector in Wireshark (formerly Ethereal) 1.0.0 allows remote attackers to cause a denial of service (application crash) via unknown vectors, possibly related to an "incomplete SS7 MSU syslog encapsulated packet." Scope: local bookworm: resolved (fixed in 1.0.1-1) bullseye: resolved (fixed in 1.0.1-1) forky: resolved (fixed in 1.0.1-1) sid: resolved (f

CVE-2008-4683 [MEDIUM] CVE-2008-4683: wireshark - The dissect_btacl function in packet-bthci_acl.c in the Bluetooth ACL dissector ... The dissect_btacl function in packet-bthci_acl.c in the Bluetooth ACL dissector in Wireshark 0.99.2 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a packet with an invalid length, related to an erroneous tvb_memcpy call. Scope: local bookworm: resolved (fixed in 1.0.4-1) bullseye: resolved (fixed in 1.0.4-1) for

CVE-2008-1563 [MEDIUM] CVE-2008-1563: wireshark - The "decode as" feature in packet-bssap.c in the SCCP dissector in Wireshark (fo... The "decode as" feature in packet-bssap.c in the SCCP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet. Scope: local bookworm: resolved (fixed in 1.0.0-1) bullseye: resolved (fixed in 1.0.0-1) forky: resolved (fixed in 1.0.0-1) sid: resolved (fixed in 1.

CVE-2008-3934 [LOW] CVE-2008-3934: wireshark - Unspecified vulnerability in Wireshark (formerly Ethereal) 0.99.6 through 1.0.2 ... Unspecified vulnerability in Wireshark (formerly Ethereal) 0.99.6 through 1.0.2 allows attackers to cause a denial of service (crash) via a crafted Tektronix .rf5 file. Scope: local bookworm: resolved (fixed in 1.0.3-1) bullseye: resolved (fixed in 1.0.3-1) forky: resolved (fixed in 1.0.3-1) sid: resolved (fixed in 1.0.3-1) trixie: resolved (fixed in 1.0.3-1)

CVE-2008-3138 [MEDIUM] CVE-2008-3138: wireshark - The (1) PANA and (2) KISMET dissectors in Wireshark (formerly Ethereal) 0.99.3 t... The (1) PANA and (2) KISMET dissectors in Wireshark (formerly Ethereal) 0.99.3 through 1.0.0 allow remote attackers to cause a denial of service (application stop) via unknown vectors. Scope: local bookworm: resolved (fixed in 1.0.1-1) bullseye: resolved (fixed in 1.0.1-1) forky: resolved (fixed in 1.0.1-1) sid: resolved (fixed in 1.0.1-1) trixie: resolved (fixed

CVE-2007-3391 [HIGH] CVE-2007-3391: wireshark - Wireshark 0.99.5 allows remote attackers to cause a denial of service (memory co... Wireshark 0.99.5 allows remote attackers to cause a denial of service (memory consumption) via a malformed DCP ETSI packet that triggers an infinite loop. Scope: local bookworm: resolved (fixed in 0.99.6pre1-1) bullseye: resolved (fixed in 0.99.6pre1-1) forky: resolved (fixed in 0.99.6pre1-1) sid: resolved (fixed in 0.99.6pre1-1) trixie: resolved (fixed in 0.99.6pre

CVE-2007-6438 [HIGH] CVE-2007-6438: wireshark - Unspecified vulnerability in the SMB dissector in Wireshark (formerly Ethereal) ... Unspecified vulnerability in the SMB dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service via unknown vectors. NOTE: this identifier originally included MP3 and NCP, but those issues are already covered by CVE-2007-6111. Scope: local bookworm: resolved (fixed in 0.99.7-1) bullseye: resolved (fixed in 0.99.7-1) forky:

CVE-2007-6114 [CRITICAL] CVE-2007-6114: wireshark - Multiple buffer overflows in Wireshark (formerly Ethereal) 0.99.0 through 0.99.6... Multiple buffer overflows in Wireshark (formerly Ethereal) 0.99.0 through 0.99.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) the SSL dissector or (2) the iSeries (OS/400) Communication trace file parser. Scope: local bookworm: resolved (fixed in 0.99.7~pre1-1) bullseye: resolved (fixed in 0.99.7~pre1-1)

CVE-2007-6439 [MEDIUM] CVE-2007-6439: wireshark - Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial o... Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite or large loop) via the (1) IPv6 or (2) USB dissector, which can trigger resource consumption or a crash. NOTE: this identifier originally included Firebird/Interbase, but it is already covered by CVE-2007-6116. The DCP ETSI issue is already covered by CVE-2007-6119.

CVE-2007-3389 [MEDIUM] CVE-2007-3389: wireshark - Wireshark before 0.99.6 allows remote attackers to cause a denial of service (cr... Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via a crafted chunked encoding in an HTTP response, possibly related to a zero-length payload. Scope: local bookworm: resolved (fixed in 0.99.6pre1-1) bullseye: resolved (fixed in 0.99.6pre1-1) forky: resolved (fixed in 0.99.6pre1-1) sid: resolved (fixed in 0.99.6pre1-1) trixie: r

CVE-2007-3393 [MEDIUM] CVE-2007-3393: wireshark - Off-by-one error in the DHCP/BOOTP dissector in Wireshark before 0.99.6 allows r... Off-by-one error in the DHCP/BOOTP dissector in Wireshark before 0.99.6 allows remote attackers to cause a denial of service (crash) via crafted DHCP-over-DOCSIS packets. Scope: local bookworm: resolved (fixed in 0.99.6pre1-1) bullseye: resolved (fixed in 0.99.6pre1-1) forky: resolved (fixed in 0.99.6pre1-1) sid: resolved (fixed in 0.99.6pre1-1) trixie: resolved (

CVE-2007-6117 [MEDIUM] CVE-2007-6117: wireshark - Unspecified vulnerability in the HTTP dissector for Wireshark (formerly Ethereal... Unspecified vulnerability in the HTTP dissector for Wireshark (formerly Ethereal) 0.10.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted chunked messages. Scope: local bookworm: resolved (fixed in 0.99.7~pre1-1) bullseye: resolved (fixed in 0.99.7~pre1-1) forky: resolved (fixed in 0.99.7~pre1-