Sumario de Vulnerabilidades – Semana 10/18

Medium Vulnerabilities

Primary
Vendor — Product
Description Published CVSS Score Source & Patch Info
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a large loop that was addressed by not proceeding with dissection after encountering an unexpected type. 2018-02-23 5.0 CVE-2018-7321
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-dcm.c had an infinite loop that was addressed by checking for integer wraparound. 2018-02-23 5.0 CVE-2018-7322
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-wccp.c had a large loop that was addressed by ensuring that a calculated length was monotonically increasing. 2018-02-23 5.0 CVE-2018-7323
BID
CONFIRM
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-sccp.c had an infinite loop that was addressed by using a correct integer data type. 2018-02-23 5.0 CVE-2018-7324
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpki-rtr.c had an infinite loop that was addressed by validating a length field. 2018-02-23 5.0 CVE-2018-7325
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-lltd.c had an infinite loop that was addressed by using a correct integer data type. 2018-02-23 5.0 CVE-2018-7326
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-openflow_v6.c had an infinite loop that was addressed by validating property lengths. 2018-02-23 5.0 CVE-2018-7327
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-usb.c had an infinite loop that was addressed by rejecting short frame header lengths. 2018-02-23 5.0 CVE-2018-7328
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-s7comm.c had an infinite loop that was addressed by correcting off-by-one errors. 2018-02-23 5.0 CVE-2018-7329
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thread.c had an infinite loop that was addressed by using a correct integer data type. 2018-02-23 5.0 CVE-2018-7330
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-ber.c had an infinite loop that was addressed by validating a length. 2018-02-23 5.0 CVE-2018-7331
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-reload.c had an infinite loop that was addressed by validating a length. 2018-02-23 5.0 CVE-2018-7332
BID
CONFIRM
CONFIRM
CONFIRM
wireshark — wireshark In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpcrdma.c had an infinite loop that was addressed by validating a chunk size. 2018-02-23 5.0 CVE-2018-7333
BID
CONFIRM
CONFIRM
CONFIRM