Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 635546 (CVE-2017-11406, CVE-2017-11407, CVE-2017-11408, CVE-2017-11409, CVE-2017-11410, CVE-2017-11411)

Summary: net-analyzer/wireshark: Multiple vulnerabilities
Product: Gentoo Security Reporter: GLSAMaker/CVETool Bot <glsamaker>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED INVALID    
Severity: minor CC: netmon
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://www.wireshark.org/security/
See Also: https://bugs.gentoo.org/show_bug.cgi?id=635686
Whiteboard: B3 [ebuild cve blocked]
Package list:
Runtime testing required: ---
Bug Depends on: 629370, 635686    
Bug Blocks:    

Description GLSAMaker/CVETool Bot gentoo-dev 2017-10-27 00:39:14 UTC
CVE-2017-11411 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-11411):
  In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY
  dissector could crash or exhaust system memory. This was addressed in
  epan/dissectors/packet-opensafety.c by adding length validation. NOTE: this
  vulnerability exists because of an incomplete fix for CVE-2017-9350.

CVE-2017-11410 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-11410):
  In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the WBXML dissector
  could go into an infinite loop, triggered by packet injection or a malformed
  capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding
  validation of the relationships between indexes and lengths. NOTE: this
  vulnerability exists because of an incomplete fix for CVE-2017-7702.

CVE-2017-11409 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-11409):
  In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large
  loop. This was addressed in epan/dissectors/packet-gprs-llc.c by using a
  different integer data type.

CVE-2017-11408 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-11408):
  In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the AMQP dissector could
  crash. This was addressed in epan/dissectors/packet-amqp.c by checking for
  successful list dissection.

CVE-2017-11407 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-11407):
  In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could
  crash. This was addressed in epan/dissectors/packet-mq.c by validating the
  fragment length before a reassembly attempt.

CVE-2017-11406 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2017-11406):
  In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could
  go into an infinite loop. This was addressed in
  plugins/docsis/packet-docsis.c by rejecting invalid Frame Control parameter
  values.
Comment 1 Jeroen Roovers gentoo-dev 2017-10-27 01:30:33 UTC
Bug #625474	net-analyzer/wireshark: Multiple Vulnerabilities
Bug #629370	net-analyzer/wireshark: multiple vulnerabilities
Bug #629454	net-analyzer/wireshark: Modbus dissector crash (wnpa-sec-2017-40)
Bug #634872	net-analyzer/wireshark: Multiple vulnerabilities
(Bug #635546	net-analyzer/wireshark: Multiple vulnerabilities)

It's so confusing without versions, isn't it? Now of which of these is this bug report a duplicate?
Comment 2 D'juan McDonald (domhnall) 2017-10-27 17:32:44 UTC
Aggregating upstream security announcements for reference URL(s).

CVE-2017-11406(https://www.wireshark.org/security/wnpa-sec-2017-36.html):
CVE-2017-11407(https://www.wireshark.org/security/wnpa-sec-2017-35.html):
CVE-2017-11408(https://www.wireshark.org/security/wnpa-sec-2017-34.html):
CVE-2017-11409(https://www.wireshark.org/security/wnpa-sec-2017-37.html):
CVE-2017-11410(https://www.wireshark.org/security/wnpa-sec-2017-13.html):
CVE-2017-11411(https://www.wireshark.org/security/wnpa-sec-2017-28.html):

Gentoo Security Padawan
(jmbailey/mbailey_j)
Comment 3 Jeroen Roovers gentoo-dev 2018-10-12 07:44:14 UTC
(In reply to Jeroen Roovers from comment #1)
> Bug #625474	net-analyzer/wireshark: Multiple Vulnerabilities
> Bug #629370	net-analyzer/wireshark: multiple vulnerabilities
> Bug #629454	net-analyzer/wireshark: Modbus dissector crash (wnpa-sec-2017-40)
> Bug #634872	net-analyzer/wireshark: Multiple vulnerabilities
> (Bug #635546	net-analyzer/wireshark: Multiple vulnerabilities)
> 
> It's so confusing without versions, isn't it? Now of which of these is this
> bug report a duplicate?

No answer.