Debian Wireshark vulnerabilities

CVE-2006-3630 [HIGH] CVE-2006-3630: wireshark - Multiple off-by-one errors in Wireshark (aka Ethereal) 0.9.7 to 0.99.0 have unkn... Multiple off-by-one errors in Wireshark (aka Ethereal) 0.9.7 to 0.99.0 have unknown impact and remote attack vectors via the (1) NCP NMAS and (2) NDPS dissectors. Scope: local bookworm: resolved (fixed in 0.99.2-1) bullseye: resolved (fixed in 0.99.2-1) forky: resolved (fixed in 0.99.2-1) sid: resolved (fixed in 0.99.2-1) trixie: resolved (fixed in 0.99.2-1)

CVE-2006-3629 [HIGH] CVE-2006-3629: wireshark - Unspecified vulnerability in the MOUNT dissector in Wireshark (aka Ethereal) 0.9... Unspecified vulnerability in the MOUNT dissector in Wireshark (aka Ethereal) 0.9.4 to 0.99.0 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. Scope: local bookworm: resolved (fixed in 0.99.2-1) bullseye: resolved (fixed in 0.99.2-1) forky: resolved (fixed in 0.99.2-1) sid: resolved (fixed in 0.99.2-1) trixie: resolve

CVE-2006-3632 [CRITICAL] CVE-2006-3632: wireshark - Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attac... Buffer overflow in Wireshark (aka Ethereal) 0.8.16 to 0.99.0 allows remote attackers to cause a denial of service and possibly execute arbitrary code via the NFS dissector. Scope: local bookworm: resolved (fixed in 0.99.2-1) bullseye: resolved (fixed in 0.99.2-1) forky: resolved (fixed in 0.99.2-1) sid: resolved (fixed in 0.99.2-1) trixie: resolved (fixed in 0.9

CVE-2006-3627 [MEDIUM] CVE-2006-3627: wireshark - Unspecified vulnerability in the GSM BSSMAP dissector in Wireshark (aka Ethereal... Unspecified vulnerability in the GSM BSSMAP dissector in Wireshark (aka Ethereal) 0.10.11 to 0.99.0 allows remote attackers to cause a denial of service (crash) via unspecified vectors. Scope: local bookworm: resolved (fixed in 0.99.2-1) bullseye: resolved (fixed in 0.99.2-1) forky: resolved (fixed in 0.99.2-1) sid: resolved (fixed in 0.99.2-1) trixie: resolved (f

CVE-2006-5469 [MEDIUM] CVE-2006-5469: wireshark - Unspecified vulnerability in the WBXML dissector in Wireshark (formerly Ethereal... Unspecified vulnerability in the WBXML dissector in Wireshark (formerly Ethereal) 0.10.11 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger a null dereference. Scope: local bookworm: resolved (fixed in 0.99.4-1) bullseye: resolved (fixed in 0.99.4-1) forky: resolved (fixed in 0.99.4-1) sid: resolved (fixed

CVE-2006-5468 [MEDIUM] CVE-2006-5468: wireshark - Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal)... Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via unspecified vectors. Scope: local bookworm: resolved (fixed in 0.99.4-1) bullseye: resolved (fixed in 0.99.4-1) forky: resolved (fixed in 0.99.4-1) sid: resolved (fixed in 0.99.4-1) trixie: resolved (fixed in 0.99

CVE-2006-4330 [MEDIUM] CVE-2006-4330: wireshark - Unspecified vulnerability in the SCSI dissector in Wireshark (formerly Ethereal)... Unspecified vulnerability in the SCSI dissector in Wireshark (formerly Ethereal) 0.99.2 allows remote attackers to cause a denial of service (crash) via unspecified vectors. Scope: local bookworm: resolved (fixed in 0.99.2-5) bullseye: resolved (fixed in 0.99.2-5) forky: resolved (fixed in 0.99.2-5) sid: resolved (fixed in 0.99.2-5) trixie: resolved (fixed in 0.99

CVE-2006-4574 [HIGH] CVE-2006-4574: wireshark - Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal... Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger an assertion error related to unexpected length values. Scope: local bookworm: resolved (fixed in 0.99.4-1) bullseye: resolved (fixed in 0.99.4-1) forky: resolved (fixed

CVE-2006-5740 [MEDIUM] CVE-2006-5740: wireshark - Unspecified vulnerability in the LDAP dissector in Wireshark (formerly Ethereal)... Unspecified vulnerability in the LDAP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via a crafted LDAP packet. Scope: local bookworm: resolved (fixed in 0.99.4-1) bullseye: resolved (fixed in 0.99.4-1) forky: resolved (fixed in 0.99.4-1) sid: resolved (fixed in 0.99.4-1) trixie: resolved (fixed in 0.

CVE-2006-5595 [MEDIUM] CVE-2006-5595: wireshark - Unspecified vulnerability in the AirPcap support in Wireshark (formerly Ethereal... Unspecified vulnerability in the AirPcap support in Wireshark (formerly Ethereal) 0.99.3 has unspecified attack vectors related to WEP key parsing. Scope: local bookworm: resolved (fixed in 0.99.4-1) bullseye: resolved (fixed in 0.99.4-1) forky: resolved (fixed in 0.99.4-1) sid: resolved (fixed in 0.99.4-1) trixie: resolved (fixed in 0.99.4-1)

CVE-2006-4805 [MEDIUM] CVE-2006-4805: wireshark - epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark... epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark (formerly Ethereal) 0.9.8 through 0.99.3 allows remote attackers to cause a denial of service (memory consumption and crash) via an encoded XOT packet that produces a zero length value when it is decoded. Scope: local bookworm: resolved (fixed in 0.99.4-1) bullseye: resolved (fixed in

CVE-2006-4331 [MEDIUM] CVE-2006-4331: wireshark - Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (form... Multiple off-by-one errors in the IPSec ESP preference parser in Wireshark (formerly Ethereal) 0.99.2 allow remote attackers to cause a denial of service (crash) via unspecified vectors. Scope: local bookworm: resolved (fixed in 0.99.2-5.1) bullseye: resolved (fixed in 0.99.2-5.1) forky: resolved (fixed in 0.99.2-5.1) sid: resolved (fixed in 0.99.2-5.1) trixie: re

CVE-2006-4332 [MEDIUM] CVE-2006-4332: wireshark - Unspecified vulnerability in the DHCP dissector in Wireshark (formerly Ethereal)... Unspecified vulnerability in the DHCP dissector in Wireshark (formerly Ethereal) 0.10.13 through 0.99.2, when run on Windows, allows remote attackers to cause a denial of service (crash) via unspecified vectors that trigger a bug in Glib. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2006-4333 [MEDIUM] CVE-2006-4333: wireshark - The SSCOP dissector in Wireshark (formerly Ethereal) before 0.99.3 allows remote... The SSCOP dissector in Wireshark (formerly Ethereal) before 0.99.3 allows remote attackers to cause a denial of service (resource consumption) via malformed packets that cause the Q.2391 dissector to use excessive memory. Scope: local bookworm: resolved (fixed in 0.99.2-5.1) bullseye: resolved (fixed in 0.99.2-5.1) forky: resolved (fixed in 0.99.2-5.1) sid: resolv