SB2016112404 - Arch Linux update for wireshark-qt

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2016112404

SB2016112404 - Arch Linux update for wireshark-qt

Published: November 24, 2016 Updated: March 24, 2022

Security Bulletin ID SB2016112404
CSH Severity
Medium
Patch available
YES
Number of vulnerabilities 4
Exploitation vector Remote access
Highest impact Denial of service

Breakdown by Severity

Medium 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 4 vulnerabilities.


1) Input validation error (CVE-ID: CVE-2016-9373)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can create a use-after-free, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dcerpc-nt.c and epan/dissectors/packet-dcerpc-spoolss.c by using the wmem file scope for private strings, pass it to the affected application and perform a denial of service (DoS) attack.


2) Input validation error (CVE-ID: CVE-2016-9374)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can create a buffer over-read, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-alljoyn.c by ensuring that a length variable properly tracked the state of a signature variable, pass it to the affected application and perform a denial of service (DoS) attack.


3) Input validation error (CVE-ID: CVE-2016-9375)

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DTN dissector could go into an infinite loop, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dtn.c by checking whether SDNV evaluation was successful.


4) Input validation error (CVE-ID: CVE-2016-9376)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input. A remote attacker can create memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflow_v5.c by ensuring that certain length values were sufficiently large, pass it to the affected application and perform a denial of service (DoS) attack.


Remediation

Install update from vendor's website.

References