Lucene search

DebianDEBIAN:DSA-3671-1:D1DD8

HistorySep 20, 2016 - 7:43 p.m.

[SECURITY] [DSA 3671-1] mutt security update

2016-09-2019:43:11

lists.debian.org

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.6

Confidence

High

EPSS

0.003

Percentile

70.8%

JSON

Debian Security Advisory DSA-3671-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
September 20, 2016 https://www.debian.org/security/faq

Package : wireshark
CVE ID : CVE-2016-7176 CVE-2016-7177 CVE-2016-7178 CVE-2016-7179
CVE-2016-7180

Multiple vulnerabilities were discovered in the dissectors for H.225,
Catapult DCT2000, UMTS FP and IPMI, which could result in denial of
service or the execution of arbitrary code.

For the stable distribution (jessie), these problems have been fixed in
version 1.12.1+g01b65bf-4+deb8u9.

For the testing distribution (stretch), these problems have been fixed
in version 2.2.0+g5368c50-1.

For the unstable distribution (sid), these problems have been fixed in
version 2.2.0+g5368c50-1.

We recommend that you upgrade your wireshark packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian7armhfwireshark< 1.12.1+g01b65bf-4+deb8u6~deb7u4wireshark_1.12.1+g01b65bf-4+deb8u6~deb7u4_armhf.deb
Debian8kfreebsd-i386libwiretap4< 1.12.1+g01b65bf-4+deb8u9libwiretap4_1.12.1+g01b65bf-4+deb8u9_kfreebsd-i386.deb
Debian8arm64wireshark< 1.12.1+g01b65bf-4+deb8u9wireshark_1.12.1+g01b65bf-4+deb8u9_arm64.deb
Debian8ppc64ellibwireshark5< 1.12.1+g01b65bf-4+deb8u9libwireshark5_1.12.1+g01b65bf-4+deb8u9_ppc64el.deb
Debian8armellibwireshark5< 1.12.1+g01b65bf-4+deb8u9libwireshark5_1.12.1+g01b65bf-4+deb8u9_armel.deb
Debian8kfreebsd-i386libwsutil-dev< 1.12.1+g01b65bf-4+deb8u9libwsutil-dev_1.12.1+g01b65bf-4+deb8u9_kfreebsd-i386.deb
Debian8ppc64ellibwsutil-dev< 1.12.1+g01b65bf-4+deb8u9libwsutil-dev_1.12.1+g01b65bf-4+deb8u9_ppc64el.deb
Debian8mipselwireshark-common< 1.12.1+g01b65bf-4+deb8u9wireshark-common_1.12.1+g01b65bf-4+deb8u9_mipsel.deb
Debian8armellibwiretap4< 1.12.1+g01b65bf-4+deb8u9libwiretap4_1.12.1+g01b65bf-4+deb8u9_armel.deb
Debian7amd64wireshark-common< 1.12.1+g01b65bf-4+deb8u6~deb7u4wireshark-common_1.12.1+g01b65bf-4+deb8u6~deb7u4_amd64.deb

OS	Version	Architecture	Package	Version	Filename
Debian	7	armhf	wireshark	< 1.12.1+g01b65bf-4+deb8u6~deb7u4	wireshark_1.12.1+g01b65bf-4+deb8u6~deb7u4_armhf.deb
Debian	8	kfreebsd-i386	libwiretap4	< 1.12.1+g01b65bf-4+deb8u9	libwiretap4_1.12.1+g01b65bf-4+deb8u9_kfreebsd-i386.deb
Debian	8	arm64	wireshark	< 1.12.1+g01b65bf-4+deb8u9	wireshark_1.12.1+g01b65bf-4+deb8u9_arm64.deb
Debian	8	ppc64el	libwireshark5	< 1.12.1+g01b65bf-4+deb8u9	libwireshark5_1.12.1+g01b65bf-4+deb8u9_ppc64el.deb
Debian	8	armel	libwireshark5	< 1.12.1+g01b65bf-4+deb8u9	libwireshark5_1.12.1+g01b65bf-4+deb8u9_armel.deb
Debian	8	kfreebsd-i386	libwsutil-dev	< 1.12.1+g01b65bf-4+deb8u9	libwsutil-dev_1.12.1+g01b65bf-4+deb8u9_kfreebsd-i386.deb
Debian	8	ppc64el	libwsutil-dev	< 1.12.1+g01b65bf-4+deb8u9	libwsutil-dev_1.12.1+g01b65bf-4+deb8u9_ppc64el.deb
Debian	8	mipsel	wireshark-common	< 1.12.1+g01b65bf-4+deb8u9	wireshark-common_1.12.1+g01b65bf-4+deb8u9_mipsel.deb
Debian	8	armel	libwiretap4	< 1.12.1+g01b65bf-4+deb8u9	libwiretap4_1.12.1+g01b65bf-4+deb8u9_armel.deb
Debian	7	amd64	wireshark-common	< 1.12.1+g01b65bf-4+deb8u6~deb7u4	wireshark-common_1.12.1+g01b65bf-4+deb8u6~deb7u4_amd64.deb