[Security] Wireshark Vulnerabilities (February 2015)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
wireshark (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Medium
|
Unassigned | ||
Trusty |
Confirmed
|
Medium
|
Unassigned | ||
Utopic |
Fix Released
|
Medium
|
Unassigned |
Bug Description
There are several new vulnerabilities found in Wireshark in 2015.
WCCP Dissector Crash (CVE-2015-0559, CVE-2015-0560)
(https:/
Description: The WCCP dissector could crash.
Impact: "It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file."
LPP dissector crash (CVE-2015-0561)
(https:/
Description: The LPP dissector could crash.
Impact: It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
DEC DNA Routing Protocol dissector crash (CVE-2015-0562)
(https:/
Description: The DEC DNA Routing Protocol dissector could crash.
Impact: It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
SMTP dissector crash (CVE-2015-0563)
(https:/
Description: The SMTP dissector could crash.
Impact: It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
TLS/SSL decryption crash (CVE-2015-0564)
(https:/
Description: Wireshark could underflow a buffer while decypting TLS/SSL sessions. Discovered by Noam Rathaus.
Impact: "It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file."
------
Debian has already patched these in 1.12.1+g01b65bf-3.
Vivid is unaffected as it has the Debian version in which this is fixed. Utopic is known to be affected as it is an affected (and unpatched) 1.12.x version. Trusty is also known to be affected, as it has an affected (and unpatched) version of 1.10.x.
Precise is assumed to be affected, however this is unconfirmed.
------
A debdiff shall be attached to this bug shortly for Utopic.
description: | updated |
Changed in wireshark (Ubuntu): | |
status: | Confirmed → Fix Released |
Changed in wireshark (Ubuntu Precise): | |
status: | New → Confirmed |
Changed in wireshark (Ubuntu Trusty): | |
status: | New → Confirmed |
Changed in wireshark (Ubuntu Utopic): | |
status: | New → Confirmed |
Changed in wireshark (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in wireshark (Ubuntu Utopic): | |
importance: | Undecided → Medium |
Changed in wireshark (Ubuntu Trusty): | |
importance: | Undecided → Medium |
Attached here is a Utopic debdiff to address this issue. The patches are pulled directly from Debian Unstable's 1.12.1+g01b65bf-3 package build. (The only patch not pulled is the GTK crash patch - the scope of nitpicking only covered the security fixes.)
There is a test build here (currently building at the time of this debdiff upload): https:/ /launchpad. net/~teward/ +archive/ ubuntu/ wireshark- security/ +packages