Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 25 Apr 2016 23:00:10 +0200
From: Moritz Muehlenhoff <jmm@...ian.org>
To: cve-assign@...re.org, oss-security@...ts.openwall.com
Cc: security@...eshark.org
Subject: CVE requests: Multiple Wireshark vulnerabilities

Hi,
there's quite a backlog of Wireshark vulnerabilities which don't
have CVE IDs assigned:

Ixia IxVeriWave file parser crash :
https://www.wireshark.org/security/wnpa-sec-2016-12.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11795

IEEE 802.11 dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-13.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11818

GSM A-bis OML dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-14.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11825

ASN.1 BER dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-15.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12106

SPICE dissector large loop :
https://www.wireshark.org/security/wnpa-sec-2016-16.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12151

NFS dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-17.html

ASN.1 BER dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-18.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11822

NCP dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-19.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11591

TShark reassembly crash :
https://www.wireshark.org/security/wnpa-sec-2016-20.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11799

IEEE 802.11 dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-21.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11824
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12187

PKTC dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-22.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12206

PKTC dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-23.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12242

IAX2 infinite loop :
https://www.wireshark.org/security/wnpa-sec-2016-24.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12260

Wireshark and TShark crash :
https://www.wireshark.org/security/wnpa-sec-2016-25.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12268

GSM CBCH dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-26.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12278

MS-WSP dissector crash :
https://www.wireshark.org/security/wnpa-sec-2016-27.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12341

Cheers,
        Moritz

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ