Medium Vulnerabilities
| Primary Vendor — Product |
Description | Published | CVSS Score | Source & Patch Info |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a large loop that was addressed by not proceeding with dissection after encountering an unexpected type. | 2018-02-23 | 5.0 | CVE-2018-7321 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-dcm.c had an infinite loop that was addressed by checking for integer wraparound. | 2018-02-23 | 5.0 | CVE-2018-7322 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-wccp.c had a large loop that was addressed by ensuring that a calculated length was monotonically increasing. | 2018-02-23 | 5.0 | CVE-2018-7323 BID CONFIRM CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a correct integer data type. | 2018-02-23 | 5.0 | CVE-2018-7324 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpki-rtr.c had an infinite loop that was addressed by validating a length field. | 2018-02-23 | 5.0 | CVE-2018-7325 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-lltd.c had an infinite loop that was addressed by using a correct integer data type. | 2018-02-23 | 5.0 | CVE-2018-7326 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-openflow_v6.c had an infinite loop that was addressed by validating property lengths. | 2018-02-23 | 5.0 | CVE-2018-7327 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-usb.c had an infinite loop that was addressed by rejecting short frame header lengths. | 2018-02-23 | 5.0 | CVE-2018-7328 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-s7comm.c had an infinite loop that was addressed by correcting off-by-one errors. | 2018-02-23 | 5.0 | CVE-2018-7329 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thread.c had an infinite loop that was addressed by using a correct integer data type. | 2018-02-23 | 5.0 | CVE-2018-7330 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-ber.c had an infinite loop that was addressed by validating a length. | 2018-02-23 | 5.0 | CVE-2018-7331 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-reload.c had an infinite loop that was addressed by validating a length. | 2018-02-23 | 5.0 | CVE-2018-7332 BID CONFIRM CONFIRM CONFIRM |
| wireshark — wireshark | In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpcrdma.c had an infinite loop that was addressed by validating a chunk size. | 2018-02-23 | 5.0 | CVE-2018-7333 BID CONFIRM CONFIRM CONFIRM |