The following vulnerabilities have been fixed:
• wnpa-sec-2018-47 MS-WSP dissector crash. Bug 15119.
• wnpa-sec-2018-48 Steam IHS Discovery dissector memory leak.
Bug 15171. CVE-2018-18226.
• wnpa-sec-2018-49 CoAP dissector crash. Bug 15172.
• wnpa-sec-2018-50 OpcUA dissector crash. CVE-2018-12086.
Buffer overflow in OPC UA applications allows remote attackers to trigger a stack overflow with carefully structured requests.
In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was addressed in epan/dissectors/packet-coap.c by ensuring that the piv length is correctly computed.
In Wireshark 2.6.0 to 2.6.3, the Steam IHS Discovery dissector could consume system memory. This was addressed in epan/dissectors/packet-steam-ihs-discovery.c by changing the memory-management approach.
In Wireshark 2.6.0 to 2.6.3 and 2.4.0 to 2.4.9, the MS-WSP protocol dissector could crash. This was addressed in epan/dissectors/packet-mswsp.c by properly handling NULL return values.