ArchLinux: 201710-14: wireshark-cli: denial of service
Summary
- CVE-2017-15189 (denial of service)
An infinite loop flaw has been discovered in wireshark before 2.4.2 in
the DOCSIS dissector leading to excessive consumption of CPU resources
by injecting a malformed packet onto the wire or by convincing someone
to read a malformed packet trace file.
- CVE-2017-15190 (denial of service)
A stack pointer use after scope flaw has been discovered in wireshark
before 2.4.2 in the RTSP dissector leading to application crash by
injecting a malformed packet onto the wire or by convincing someone to
read a malformed packet trace file.
- CVE-2017-15191 (denial of service)
A length check flaw has been discovered in wireshark before 2.4.2 in
the BT ATT dissector when 7bit strings were decoded leading to
application crash by injecting a malformed packet onto the wire or by
convincing someone to read a malformed packet trace file.
- CVE-2017-15192 (denial of service)
A flaw has been discovered in wireshark before 2.4.2 in the BT ATT
dissector leading to application crash by injecting a malformed packet
onto the wire or by convincing someone to read a malformed packet trace
file.
- CVE-2017-15193 (denial of service)
A flaw has been discovered in wireshark before 2.4.2 in the MBIM
dissector when pre sizing wmem arrays leading to resource consumption
and application crash by injecting a malformed packet onto the wire or
by convincing someone to read a malformed packet trace file.
Resolution
Upgrade to 2.4.2-1.
# pacman -Syu "wireshark-cli>=2.4.2-1"
The problems have been fixed upstream in version 2.4.2.
References
https://seclists.org/wireshark/2017/Oct/27 https://www.wireshark.org/security/wnpa-sec-2017-46.html https://gitlab.com/wireshark/wireshark/-/issues/14080 https://www.wireshark.org/security/wnpa-sec-2017-45.html https://gitlab.com/wireshark/wireshark/-/issues/14077 https://www.wireshark.org/security/wnpa-sec-2017-44.html https://gitlab.com/wireshark/wireshark/-/issues/14068 https://www.wireshark.org/security/wnpa-sec-2017-42.html https://gitlab.com/wireshark/wireshark/-/issues/14049 https://www.wireshark.org/security/wnpa-sec-2017-43.html https://gitlab.com/wireshark/wireshark/-/issues/14056 https://security.archlinux.org/CVE-2017-15189 https://security.archlinux.org/CVE-2017-15190 https://security.archlinux.org/CVE-2017-15191 https://security.archlinux.org/CVE-2017-15192 https://security.archlinux.org/CVE-2017-15193
Workaround
None.