[Bugfix release] Multiple vulnerabilities fixed in Wireshark 1.6.2

Bug #845892 reported by Cosme Domínguez on 2011-09-09
264
This bug affects 1 person
Affects Status Importance Assigned to Milestone
wireshark (Debian)
Fix Released
Undecided
Unassigned
wireshark (Ubuntu)
Undecided
Unassigned

Bug Description

The following vulnerabilities have been fixed.

- A large loop in the OpenSafety dissector could cause a crash. [1]
Versions affected: 1.6.0 to 1.6.1.

- A malformed IKE packet could consume excessive resources. [2] [3]
Versions affected: 1.4.0 to 1.4.8, 1.6.0 to 1.6.1.

- A malformed capture file could result in an invalid root tvbuff and cause a crash. [4]
Versions affected: 1.6.0 to 1.6.1.

- Wireshark could run arbitrary Lua scripts. [5]
Versions affected: 1.4.0 to 1.4.8, 1.6.0 to 1.6.1.

- The CSN.1 dissector could crash. [6]
Versions affected: 1.6.0 to 1.6.1.

[1] http://www.wireshark.org/security/wnpa-sec-2011-12.html
[2] http://www.wireshark.org/security/wnpa-sec-2011-13.html
[3] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3266
[4] http://www.wireshark.org/security/wnpa-sec-2011-14.html
[5] http://www.wireshark.org/security/wnpa-sec-2011-15.html
[6] http://www.wireshark.org/security/wnpa-sec-2011-16.html

More info: http://www.wireshark.org/docs/relnotes/wireshark-1.6.2.html#BugFixes

As I see on ubuntu wiki, it seems a FeatureFreeze Exception for bugfix-only updates [7] since there aren't any new feature in this release. [8]

[7] https://wiki.ubuntu.com/FreezeExceptionProcess#FeatureFreeze_for_bugfix-only_updates
[8] http://www.wireshark.org/docs/relnotes/wireshark-1.6.2.html#NewFeatures

CVE References

visibility: private → public
Changed in wireshark (Ubuntu):
status: New → Confirmed
Cosme Domínguez (cosme) on 2011-09-10
description: updated
summary: - [Security] Multiple vulnerabilities fixed in wireshark 1.6.2
+ [Bugfix release] Multiple vulnerabilities fixed in Wireshark 1.6.2
description: updated
Iain Lane (laney) wrote :

No need for the release team to review this; please upload as normal.

Cosme Domínguez (cosme) on 2011-10-09
Changed in wireshark (Debian):
status: New → Fix Released
Changed in wireshark (Ubuntu):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public Security information  Edit
Everyone can see this security related information.

Duplicates of this bug

Other bug subscribers