FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

Revision:  365592
Date:      2014-08-21
Time:      19:46:21Z
Committer: zi

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
5415f1b3-f33d-11e1-8bd8-0022156e8794wireshark -- denial of service in DRDA dissector

RedHat security team reports:

A denial of service flaw was found in the way Distributed Relational Database Architecture (DRDA) dissector of Wireshark, a network traffic analyzer, performed processing of certain DRDA packet capture files. A remote attacker could create a specially-crafted capture file that, when opened could lead to wireshark executable to consume excessive amount of CPU time and hang with an infinite loop.


Discovery 2012-08-21
Entry 2012-08-31
Modified 2012-09-05
wireshark
ge 1.5 lt 1.9

wireshark-lite
ge 1.5 lt 1.9

tshark
ge 1.5 lt 1.9

tshark-lite
ge 1.5 lt 1.9

CVE-2012-3548
https://bugzilla.redhat.com/show_bug.cgi?id=849926
a7706414-1be7-11e2-9aad-902b343deec9Wireshark -- Multiple Vulnerabilities

Wireshark reports:

The HSRP dissector could go into an infinite loop.

The PPP dissector could abort.

Martin Wilck discovered an infinite loop in the DRDA dissector.

Laurent Butti discovered a buffer overflow in the LDP dissector.


Discovery 2012-10-02
Entry 2012-10-22
Modified 2013-06-19
wireshark
le 1.8.2_1

wireshark-lite
le 1.8.2_1

tshark
le 1.8.2_1

tshark-lite
le 1.8.2_1

CVE-2012-5237
CVE-2012-5238
CVE-2012-5239
CVE-2012-5240
http://www.wireshark.org/security/wnpa-sec-2012-26.html
http://www.wireshark.org/security/wnpa-sec-2012-27.html
http://www.wireshark.org/security/wnpa-sec-2012-28.html
http://www.wireshark.org/security/wnpa-sec-2012-29.html
http://www.wireshark.org/docs/relnotes/wireshark-1.8.3.html
5415f1b3-f33d-11e1-8bd8-0022156e8794wireshark -- denial of service in DRDA dissector

RedHat security team reports:

A denial of service flaw was found in the way Distributed Relational Database Architecture (DRDA) dissector of Wireshark, a network traffic analyzer, performed processing of certain DRDA packet capture files. A remote attacker could create a specially-crafted capture file that, when opened could lead to wireshark executable to consume excessive amount of CPU time and hang with an infinite loop.


Discovery 2012-08-21
Entry 2012-08-31
Modified 2012-09-05
wireshark
ge 1.5 lt 1.9

wireshark-lite
ge 1.5 lt 1.9

tshark
ge 1.5 lt 1.9

tshark-lite
ge 1.5 lt 1.9

CVE-2012-3548
https://bugzilla.redhat.com/show_bug.cgi?id=849926
5415f1b3-f33d-11e1-8bd8-0022156e8794wireshark -- denial of service in DRDA dissector

RedHat security team reports:

A denial of service flaw was found in the way Distributed Relational Database Architecture (DRDA) dissector of Wireshark, a network traffic analyzer, performed processing of certain DRDA packet capture files. A remote attacker could create a specially-crafted capture file that, when opened could lead to wireshark executable to consume excessive amount of CPU time and hang with an infinite loop.


Discovery 2012-08-21
Entry 2012-08-31
Modified 2012-09-05
wireshark
ge 1.5 lt 1.9

wireshark-lite
ge 1.5 lt 1.9

tshark
ge 1.5 lt 1.9

tshark-lite
ge 1.5 lt 1.9

CVE-2012-3548
https://bugzilla.redhat.com/show_bug.cgi?id=849926