FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-27 18:04:16 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
c5ab620f-4576-4ad5-b51f-93e4fec9cd0ewireshark -- multiple security issues

wireshark developers reports:

wnpa-sec-2018-05. IEEE 802.11 dissector crash. (CVE-2018-7335)

wnpa-sec-2018-06. Large or infinite loops in multiple dissectors. (CVE-2018-7321 through CVE-2018-7333)

wnpa-sec-2018-07. UMTS MAC dissector crash. (CVE-2018-7334)

wnpa-sec-2018-08. DOCSIS dissector crash. (CVE-2018-7337)

wnpa-sec-2018-09. FCP dissector crash. (CVE-2018-7336)

wnpa-sec-2018-10. SIGCOMP dissector crash. (CVE-2018-7320)

wnpa-sec-2018-11. Pcapng file parser crash.

wnpa-sec-2018-12. IPMI dissector crash.

wnpa-sec-2018-13. SIGCOMP dissector crash.

wnpa-sec-2018-14. NBAP dissector crash.


Discovery 2018-02-23
Entry 2018-03-04
wireshark
ge 2.2.0 lt 2.2.13

ge 2.4.0 lt 2.4.5

wireshark-lite
ge 2.2.0 lt 2.2.13

ge 2.4.0 lt 2.4.5

wireshark-qt5
ge 2.2.0 lt 2.2.13

ge 2.4.0 lt 2.4.5

tshark
ge 2.2.0 lt 2.2.13

ge 2.4.0 lt 2.4.5

tshark-lite
ge 2.2.0 lt 2.2.13

ge 2.4.0 lt 2.4.5

https://www.wireshark.org/security/
https://www.wireshark.org/security/wnpa-sec-2018-05.html
https://www.wireshark.org/security/wnpa-sec-2018-06.html
https://www.wireshark.org/security/wnpa-sec-2018-07.html
https://www.wireshark.org/security/wnpa-sec-2018-08.html
https://www.wireshark.org/security/wnpa-sec-2018-09.html
https://www.wireshark.org/security/wnpa-sec-2018-10.html
https://www.wireshark.org/security/wnpa-sec-2018-11.html
https://www.wireshark.org/security/wnpa-sec-2018-12.html
https://www.wireshark.org/security/wnpa-sec-2018-13.html
https://www.wireshark.org/security/wnpa-sec-2018-14.html
CVE-2018-7320
CVE-2018-7321
CVE-2018-7322
CVE-2018-7323
CVE-2018-7324
CVE-2018-7325
CVE-2018-7326
CVE-2018-7327
CVE-2018-7328
CVE-2018-7329
CVE-2018-7330
CVE-2018-7331
CVE-2018-7332
CVE-2018-7333
CVE-2018-7334
CVE-2018-7335
CVE-2018-7336
CVE-2018-7337
CVE-2018-7417
7fff2b16-b0ee-11e6-86b8-589cfc054129wireshark -- multiple vulnerabilities

Wireshark project reports:

Wireshark project is releasing Wireshark 2.2.2, which addresses:

  • wnpa-sec-2016-58: Profinet I/O long loop - CVE-2016-9372
  • wnpa-sec-2016-59: AllJoyn crash - CVE-2016-9374
  • wnpa-sec-2016-60: OpenFlow crash - CVE-2016-9376
  • wnpa-sec-2016-61: DCERPC crash - CVE-2016-9373
  • wnpa-sec-2016-62: DTN infinite loop - CVE-2016-9375

Discovery 2016-11-16
Entry 2016-12-01
tshark
< 2.2.2

tshark-lite
< 2.2.2

wireshark
< 2.2.2

wireshark-lite
< 2.2.2

wireshark-qt5
< 2.2.2

https://www.wireshark.org/docs/relnotes/wireshark-2.2.2.html
CVE-2016-9372
CVE-2016-9373
CVE-2016-9374
CVE-2016-9375
CVE-2016-9376
4684a426-774d-4390-aa19-b8dd481c4c94wireshark -- multiple security issues

wireshark developers reports:

In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by adding decrements.

In Wireshark 2.4.0 to 2.4.1, the RTSP dissector could crash. This was addressed in epan/dissectors/packet-rtsp.c by correcting the scope of a variable.

In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length.

In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by considering a case where not all of the BTATT packets have the same encapsulation level.

In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-mbim.c by changing the memory-allocation approach.


Discovery 2017-10-10
Entry 2017-10-30
wireshark
ge 2.2.0 le 2.2.9

ge 2.4.0 le 2.4.1

http://www.securityfocus.com/bid/101227
http://www.securityfocus.com/bid/101228
http://www.securityfocus.com/bid/101229
http://www.securityfocus.com/bid/101235
http://www.securityfocus.com/bid/101240
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14049
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14056
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14068
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14077
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14080
https://code.wireshark.org/review/23470
https://code.wireshark.org/review/23537
https://code.wireshark.org/review/23591
https://code.wireshark.org/review/23635
https://code.wireshark.org/review/23663
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=3689dc1db36037436b1616715f9a3f888fc9a0f6
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=625bab309d9dd21db2d8ae2aa3511810d32842a8
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=8dbb21dfde14221dab09b6b9c7719b9067c1f06e
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=afb9ff7982971aba6e42472de0db4c1bedfc641b
https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=e27870eaa6efa1c2dac08aa41a67fe9f0839e6e0
https://www.wireshark.org/security/wnpa-sec-2017-42.html
https://www.wireshark.org/security/wnpa-sec-2017-43.html
https://www.wireshark.org/security/wnpa-sec-2017-44.html
https://www.wireshark.org/security/wnpa-sec-2017-45.html
https://www.wireshark.org/security/wnpa-sec-2017-46.html
CVE-2017-15189
CVE-2017-15190
CVE-2017-15191
CVE-2017-15192
CVE-2017-15193
4b228e69-22e1-4019-afd0-8aa716d0ec0bwireshark -- multiple security issues

wireshark developers reports:

wnpa-sec-2017-47: The IWARP_MPA dissector could crash. (CVE-2017-17084)

wnpa-sec-2017-48: The NetBIOS dissector could crash. Discovered by Kamil Frankowicz. (CVE-2017-17083)

wnpa-sec-2017-49: The CIP Safety dissector could crash. (CVE-2017-17085)


Discovery 2017-11-30
Entry 2017-12-10
wireshark
ge 2.2.0 le 2.2.10

ge 2.4.0 le 2.4.2

wireshark-lite
ge 2.2.0 le 2.2.10

ge 2.4.0 le 2.4.2

wireshark-qt5
ge 2.2.0 le 2.2.10

ge 2.4.0 le 2.4.2

tshark
ge 2.2.0 le 2.2.10

ge 2.4.0 le 2.4.2

tshark-lite
ge 2.2.0 le 2.2.10

ge 2.4.0 le 2.4.2

https://www.wireshark.org/security/
https://www.wireshark.org/security/wnpa-sec-2017-47.html
https://www.wireshark.org/security/wnpa-sec-2017-48.html
https://www.wireshark.org/security/wnpa-sec-2017-49.html
CVE-2017-17083
CVE-2017-17084
CVE-2017-17085