ROSA Linux Bugzilla – Bug 7780
[UPDATE REQUEST] wireshark 2.0.12 CVE-2017-6014
Last modified: 2017-04-27 13:29:12 MSD
The wireshark package has been updated to version 2.0.11, which fixes two
security issues where a malformed packet trace could cause it to crash or
go into an infinite loop, and fixes several other bugs as well. See the
release notes for details.
CVE ID : CVE-2017-5596 CVE-2017-5597 CVE-2017-6014 CVE-2017-6467
CVE-2017-6468 CVE-2017-6469 CVE-2017-6470 CVE-2017-6471
CVE-2017-6472 CVE-2017-6473 CVE-2017-6474
It was discovered that wireshark, a network protocol analyzer, contained
several vulnerabilities in the dissectors for ASTERIX , DHCPv6,
NetScaler, LDSS, IAX2, WSP, K12 and STANAG 4607, that could lead to
various crashes, denial-of-service or execution of arbitrary code.
The wireshark package has been updated to version 2.0.12, which fixes
multiple security issues where a malformed packet trace could cause it to
crash or go into an infinite loop, and fixes several other bugs as well.
See the release notes for details.