Oval Definition:oval:com.redhat.rhsa:def:20201047
Revision Date:2020-03-31Version:636
Title:RHSA-2020:1047: wireshark security and bug fix update (Moderate)
Description:The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network.

Security Fix(es):

  • wireshark: Out-of-bounds read in packet-ldss.c (CVE-2018-11362)

  • wireshark: Multiple dissectors could crash (wnpa-sec-2018-36) (CVE-2018-14340)

  • wireshark: DICOM dissector infinite loop (wnpa-sec-2018-39) (CVE-2018-14341)

  • wireshark: Bazaar dissector infinite loop (wnpa-sec-2018-40) (CVE-2018-14368)

  • wireshark: SIGCOMP dissector crash in packet-sigcomp.c (CVE-2018-7418)

  • wireshark: Radiotap dissector crash (CVE-2018-16057)

  • wireshark: Infinite loop in the MMSE dissector (CVE-2018-19622)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

    Additional Changes:

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.8 Release Notes linked from the References section.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2018-11362
    CVE-2018-14340
    CVE-2018-14341
    CVE-2018-14368
    CVE-2018-16057
    CVE-2018-19622
    CVE-2018-7418
    RHSA-2020:1047
    Platform(s):Red Hat Enterprise Linux 7
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND
  • wireshark is earlier than 0:1.10.14-24.el7
  • AND wireshark is signed with Red Hat redhatrelease2 key
  • wireshark-devel is earlier than 0:1.10.14-24.el7
  • AND wireshark-devel is signed with Red Hat redhatrelease2 key
  • wireshark-gnome is earlier than 0:1.10.14-24.el7
  • AND wireshark-gnome is signed with Red Hat redhatrelease2 key
  • BACK