==================================================================== CERT-Renater Note d'Information No. 2018/VULN131 _____________________________________________________________________ DATE : 04/04/2018 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Systems running wireshark versions 2.2, 2.4 prior to 2.4.6, 2.2.14. ===================================================================== https://www.wireshark.org/security/wnpa-sec-2018-15.html https://www.wireshark.org/security/wnpa-sec-2018-16.html https://www.wireshark.org/security/wnpa-sec-2018-17.html https://www.wireshark.org/security/wnpa-sec-2018-18.html https://www.wireshark.org/security/wnpa-sec-2018-19.html https://www.wireshark.org/security/wnpa-sec-2018-20.html https://www.wireshark.org/security/wnpa-sec-2018-21.html https://www.wireshark.org/security/wnpa-sec-2018-22.html https://www.wireshark.org/security/wnpa-sec-2018-23.html https://www.wireshark.org/security/wnpa-sec-2018-24.html _____________________________________________________________________ wnpa-sec-2018-15 · MP4 dissector crash Summary Name: MP4 dissector crash Docid: wnpa-sec-2018-15 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 References: Wireshark bug 13777 Details Description The MP4 dissector could crash. Discovered by liuyinsheng. Impact It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6, 2.2.14 or later. _____________________________________________________________________ wnpa-sec-2018-16 · ADB dissector crash Summary Name: ADB dissector crash Docid: wnpa-sec-2018-16 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 References: Wireshark bug 14460 Details Description The ADB dissector could crash. Impact It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6, 2.2.14 or later. _____________________________________________________________________ wnpa-sec-2018-17 · IEEE 802.15.4 dissector crash Summary Name: IEEE 802.15.4 dissector crash Docid: wnpa-sec-2018-17 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 References: Wireshark bug 14468 Details Description The IEEE 802.15.4 dissector could crash. Discovered by Otto Airamo and Antti Levomäki, Forcepoint. Impact It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6, 2.2.14 or later. _____________________________________________________________________ wnpa-sec-2018-18 · NBAP dissector crash Summary Name: NBAP dissector crash Docid: wnpa-sec-2018-18 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 References: Wireshark bug 14471 Details Description The NBAP dissector could crash. Discovered by Otto Airamo and Antti Levomäki, Forcepoint. Impact It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6, 2.2.14 or later. _____________________________________________________________________ wnpa-sec-2018-19 · VLAN dissector crash Summary Name: VLAN dissector crash Docid: wnpa-sec-2018-19 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 References: Wireshark bug 14469 Details Description The VLAN dissector could crash. Discovered by Otto Airamo and Antti Levomäki, Forcepoint. Impact It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6, 2.2.14 or later. _____________________________________________________________________ wnpa-sec-2018-20 · LWAPP dissector crash Summary Name: LWAPP dissector crash Docid: wnpa-sec-2018-20 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 References: Wireshark bug 14467 Details Description The LWAPP dissector could crash. Discovered by Otto Airamo and Antti Levomäki, Forcepoint. Impact It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6, 2.2.14 or later. _____________________________________________________________________ wnpa-sec-2018-21 · TCP dissector crash Summary Name: TCP dissector crash Docid: wnpa-sec-2018-21 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5 Fixed versions: 2.4.6 References: Wireshark bug 14472 Details Description The TCP dissector could crash. Discovered by Otto Airamo and Antti Levomäki, Forcepoint. Impact It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6 or later. _____________________________________________________________________ wnpa-sec-2018-22 · CQL infinite loop Summary Name: CQL infinite loop Docid: wnpa-sec-2018-22 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5 Fixed versions: 2.4.6 References: Wireshark bug 14530 Details Description The CQL dissector could to into an infinite loop. Impact It may be possible to make Wireshark consume excessive CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6 or later. _____________________________________________________________________ wnpa-sec-2018-23 · Kerberos dissector crash Summary Name: Kerberos dissector crash Docid: wnpa-sec-2018-23 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 References: Wireshark bug 14576 Details Description The Kerberos dissector could crash. Impact It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6, 2.2.14 or later. _____________________________________________________________________ wnpa-sec-2018-24 · Memory leaks in multiple dissectors Summary Name: Memory leaks in multiple dissectors Docid: wnpa-sec-2018-24 Date: April 3, 2018 Affected versions: 2.4.0 to 2.4.5, 2.2.0 to 2.2.13 Fixed versions: 2.4.6, 2.2.14 References: Wireshark bug 14480 Wireshark bug 14481 Wireshark bug 14482 Wireshark bug 14483 Wireshark bug 14484 Wireshark bug 14485 Wireshark bug 14486 Wireshark bug 14487 Wireshark bug 14488 Wireshark bug 14489 Details Description Multiple dissectors and other modules could leak memory. The TN3270, ISUP, LAPD, SMB2, GIOP, ASN.1, MIME multipart, H.223, and PCP dissectors were affected along with Wireshark and TShark. Discovered by Otto Airamo and Antti Levomäki, Forcepoint. Impact It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Resolution Upgrade to Wireshark 2.4.6, 2.2.14 or later. ========================================================== + CERT-RENATER | tel : 01-53-94-20-44 + + 23 - 25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email: cert@support.renater.fr + ==========================================================