| Errata ID | 485 |
|---|---|
| Date | 2018-08-15 |
| Source package | wireshark |
| Fixed in version | 1.12.1+g01b65bf-4+deb8u15 |
| Description | This update addresses the following issues: * out of bounds access in UMTS MAC dissector in packet-umts_mac.c (CVE-2018-7334) * IEEE 802.11 dissector crash in airpdcap.c (CVE-2018-7335) * NBAP dissector crash in nbap.cnf (CVE-2018-7419) * NBAP dissector crash in epan/dissectors/packet-nbap.c (CVE-2018-9261) * Use after free in packet-q931.c (CVE-2018-11358) * Out-of-bounds read in packet-ldss.c (CVE-2018-11362) * MMSE dissector infinite loop (wnpa-sec-2018-38) (CVE-2018-14339) * Multiple dissectors could crash (wnpa-sec-2018-36) (CVE-2018-14340) * DICOM dissector infinite loop (wnpa-sec-2018-39) (CVE-2018-14341) * BGP dissector large loop (wnpa-sec-2018-34) (CVE-2018-14342) * ASN.1 BER and related dissectors crash (wnpa-sec-2018-37) (CVE-2018-14343) * Bazaar dissector infinite loop (wnpa-sec-2018-40) (CVE-2018-14368) * HTTP2 dissector infinite loop (wnpa-sec-2018-41) (CVE-2018-14369) |
| Additional notes | |
| CVE ID | CVE-2018-7334 CVE-2018-7335 CVE-2018-7419 CVE-2018-9261 CVE-2018-11358 CVE-2018-11362 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14368 CVE-2018-14369 |
| UCS Bug number | #47534 |
