Все бюллетени/sisyphus/ALT-PU-2015-1556-1
ALT-PU-2015-1556-1

Обновление пакета wireshark в ветке sisyphus

Версия1.12.6-alt1
Задание#145595
Опубликовано2015-06-19
Макс. серьёзностьMEDIUM
Серьёзность:

Закрытые проблемы (2)

CVE-2015-4651
MEDIUM5.0

The dissect_wccp2r1_address_table_info function in epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x before 1.12.6 does not properly determine whether enough memory is available for storing IP address strings, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

Опубликовано: 2015-07-22Изменено: 2025-04-12
CVSS 2.0СРЕДНЯЯ 5.0
CVSS:2.0/AV:N/AC:L/Au:N/C:N/I:N/A:P
Ссылки
CVE-2015-4652
MEDIUM4.3

epan/dissectors/packet-gsm_a_dtap.c in the GSM DTAP dissector in Wireshark 1.12.x before 1.12.6 does not properly validate digit characters, which allows remote attackers to cause a denial of service (application crash) via a crafted packet, related to the de_emerg_num_list and de_bcd_num functions.

Опубликовано: 2015-07-22Изменено: 2025-04-12
CVSS 2.0СРЕДНЯЯ 4.3
CVSS:2.0/AV:N/AC:M/Au:N/C:N/I:N/A:P
Ссылки