Arch Linux Security Advisory ASA-201805-24
=========================================
Severity: Critical
Date    : 2018-05-25
CVE-ID  : CVE-2018-11354 CVE-2018-11355 CVE-2018-11356 CVE-2018-11357
          CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361
          CVE-2018-11362
Package : wireshark-common
Type    : multiple issues
Remote  : Yes
Link    : https://security.archlinux.org/AVG-708

Summary
======
The package wireshark-common before version 2.6.1-1 is vulnerable to
multiple issues including arbitrary code execution, information
disclosure and denial of service.

Resolution
=========
Upgrade to 2.6.1-1.

# pacman -Syu "wireshark-common>=2.6.1-1"

The problems have been fixed upstream in version 2.6.1.

Workaround
=========
None.

Description
==========
- CVE-2018-11354 (information disclosure)

An out-of-bounds read has been found in the IEEE 1905.1a dissector of
Wireshark <= 2.6.0.

- CVE-2018-11355 (arbitrary code execution)

A heap-based buffer overflow has been found in the RTCP dissector of
Wireshark <= 2.6.0.

- CVE-2018-11356 (denial of service)

A null-pointer dereference has been found in the DNS dissector of
Wireshark <= 2.6.0.

- CVE-2018-11357 (denial of service)

An integer overflow leading to excessive memory allocation has been
found in several dissectors of Wireshark <= 2.6.0.

- CVE-2018-11358 (arbitrary code execution)

A heap-based use-after-free has been found in the Q.931 dissector of
Wireshark <= 2.6.0.

- CVE-2018-11359 (denial of service)

A null-pointer dereference has been found in several dissectors of
Wireshark <= 2.6.0.

- CVE-2018-11360 (arbitrary code execution)

A heap-based off-by-one write has been found in the GSM A DTAP
dissector of Wireshark <= 2.6.0.

- CVE-2018-11361 (denial of service)

A heap-based out-of-bounds read has been found in the IEEE 802.11
dissector of Wireshark <= 2.6.0.

- CVE-2018-11362 (information disclosure)

An out-of-bounds read has been found in the LDSS dissector of Wireshark
<= 2.6.0.

Impact
=====
A remote attacker can crash the application, access sensitive
information present in memory or execute arbitrary code on the affected
host via a specially crafted network packet or by convincing a local
user to open a specially crafted PCAP file.

References
=========
https://www.wireshark.org/security/wnpa-sec-2018-26.html
https://gitlab.com/wireshark/wireshark/-/issues/14647
https://www.wireshark.org/security/wnpa-sec-2018-27.html
https://gitlab.com/wireshark/wireshark/-/issues/14673
https://www.wireshark.org/security/wnpa-sec-2018-29.html
https://gitlab.com/wireshark/wireshark/-/issues/14681
https://www.wireshark.org/security/wnpa-sec-2018-28.html
https://gitlab.com/wireshark/wireshark/-/issues/14678
https://www.wireshark.org/security/wnpa-sec-2018-31.html
https://gitlab.com/wireshark/wireshark/-/issues/14689
https://www.wireshark.org/security/wnpa-sec-2018-33.html
https://gitlab.com/wireshark/wireshark/-/issues/14703
https://www.wireshark.org/security/wnpa-sec-2018-30.html
https://gitlab.com/wireshark/wireshark/-/issues/14688
https://www.wireshark.org/security/wnpa-sec-2018-32.html
https://gitlab.com/wireshark/wireshark/-/issues/14686
https://www.wireshark.org/security/wnpa-sec-2018-25.html
https://gitlab.com/wireshark/wireshark/-/issues/14615
https://security.archlinux.org/CVE-2018-11354
https://security.archlinux.org/CVE-2018-11355
https://security.archlinux.org/CVE-2018-11356
https://security.archlinux.org/CVE-2018-11357
https://security.archlinux.org/CVE-2018-11358
https://security.archlinux.org/CVE-2018-11359
https://security.archlinux.org/CVE-2018-11360
https://security.archlinux.org/CVE-2018-11361
https://security.archlinux.org/CVE-2018-11362

ArchLinux: 201805-24: wireshark-common: multiple issues

May 29, 2018

Summary

- CVE-2018-11354 (information disclosure) An out-of-bounds read has been found in the IEEE 1905.1a dissector of Wireshark <= 2.6.0.
- CVE-2018-11355 (arbitrary code execution)
A heap-based buffer overflow has been found in the RTCP dissector of Wireshark <= 2.6.0.
- CVE-2018-11356 (denial of service)
A null-pointer dereference has been found in the DNS dissector of Wireshark <= 2.6.0.
- CVE-2018-11357 (denial of service)
An integer overflow leading to excessive memory allocation has been found in several dissectors of Wireshark <= 2.6.0.
- CVE-2018-11358 (arbitrary code execution)
A heap-based use-after-free has been found in the Q.931 dissector of Wireshark <= 2.6.0.
- CVE-2018-11359 (denial of service)
A null-pointer dereference has been found in several dissectors of Wireshark <= 2.6.0.
- CVE-2018-11360 (arbitrary code execution)
A heap-based off-by-one write has been found in the GSM A DTAP dissector of Wireshark <= 2.6.0.
- CVE-2018-11361 (denial of service)
A heap-based out-of-bounds read has been found in the IEEE 802.11 dissector of Wireshark <= 2.6.0.
- CVE-2018-11362 (information disclosure)
An out-of-bounds read has been found in the LDSS dissector of Wireshark <= 2.6.0.

Resolution

Upgrade to 2.6.1-1. # pacman -Syu "wireshark-common>=2.6.1-1"
The problems have been fixed upstream in version 2.6.1.

References

https://www.wireshark.org/security/wnpa-sec-2018-26.html https://gitlab.com/wireshark/wireshark/-/issues/14647 https://www.wireshark.org/security/wnpa-sec-2018-27.html https://gitlab.com/wireshark/wireshark/-/issues/14673 https://www.wireshark.org/security/wnpa-sec-2018-29.html https://gitlab.com/wireshark/wireshark/-/issues/14681 https://www.wireshark.org/security/wnpa-sec-2018-28.html https://gitlab.com/wireshark/wireshark/-/issues/14678 https://www.wireshark.org/security/wnpa-sec-2018-31.html https://gitlab.com/wireshark/wireshark/-/issues/14689 https://www.wireshark.org/security/wnpa-sec-2018-33.html https://gitlab.com/wireshark/wireshark/-/issues/14703 https://www.wireshark.org/security/wnpa-sec-2018-30.html https://gitlab.com/wireshark/wireshark/-/issues/14688 https://www.wireshark.org/security/wnpa-sec-2018-32.html https://gitlab.com/wireshark/wireshark/-/issues/14686 https://www.wireshark.org/security/wnpa-sec-2018-25.html https://gitlab.com/wireshark/wireshark/-/issues/14615 https://security.archlinux.org/CVE-2018-11354 https://security.archlinux.org/CVE-2018-11355 https://security.archlinux.org/CVE-2018-11356 https://security.archlinux.org/CVE-2018-11357 https://security.archlinux.org/CVE-2018-11358 https://security.archlinux.org/CVE-2018-11359 https://security.archlinux.org/CVE-2018-11360 https://security.archlinux.org/CVE-2018-11361 https://security.archlinux.org/CVE-2018-11362

Severity
CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361
CVE-2018-11362
Package : wireshark-common
Type : multiple issues
Remote : Yes
Link : https://security.archlinux.org/AVG-708

Workaround

None.

Related News

Linux Mint 22: Elevating Security and Usability for Admins
3 - 5 min read
Linux Mint has has long been recognized as a versatile and user-friendly distribution and has earned great popularity among administrators and
Exim 4.98 Addresses Critical Vulnerabilities, Bolsters Email Server Security
2 - 4 min read
Exim is one of Unix-like systems' most widely used mail transfer agents. It's essential for email delivery and handling and is a significant part of
Recent OpenSSH RCE Bug Explained: Impact & Mitigations
2 - 4 min read
In an era where cybersecurity threats loom larger than ever, the discovery of a Remote Code Execution (RCE) vulnerability in OpenSSH by Qualys’
CVE-2024-4577: A Swiftly Weaponized Vulnerability for Ransomware Distribution
2 - 4 min read
Security researchers recently issued an update detailing how attackers are exploiting a PHP code execution vulnerability to spread TellYouThePass
Play Ransomware Group Unleashes New Threat on ESXi Environments: Analysis & Mitigation Strategies
3 - 5 min read
The Play ransomware group, well-known for its double-extortion tactics, recently unveiled a Linux variant targeting ESXi environments. This
Critical Linux Kernel Vulnerabilities Patched in Ubuntu Azure Systems
2 - 4 min read
Canonical has fixed several recently identified critical Linux kernel vulnerabilities in July 2024. These vulnerabilities primarily affect Microsoft
The Urgent Need for Secure Software Development: New Report Serves as a Wake-Up Call for the Industry
3 - 5 min read
The Linux Foundation and Open Source Security Foundation recently published a report entitled "Secure Software Development Education 2024
Severe Linux Kernel Privilege Escalation Bugs Could Compromise Entire Systems
2 - 4 min read
The Cybersecurity and Infrastructure Security Agency (CISA) recently added a new Linux kernel privilege escalation bug ( CVE-2024-1086 ) to its

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved