CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
85.0%
The Catapult DCT2000 and IrDA dissectors could underrun a buffer (CVE-2014-5161, CVE-2014-5162). The GSM Management dissector could crash (CVE-2014-5163). The RLC dissector could crash (CVE-2014-5164). The ASN.1 BER dissector could crash (CVE-2014-5165). The wireshark package has been updated to version 1.10.9 to fix these issues and other bugs.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | wireshark | < 1.10.9-1 | wireshark-1.10.9-1.mga3 |
Mageia | 4 | noarch | wireshark | < 1.10.9-1 | wireshark-1.10.9-1.mga4 |
www.wireshark.org/docs/relnotes/wireshark-1.10.9.html
www.wireshark.org/news/20140731.html
bugs.mageia.org/show_bug.cgi?id=13839
www.wireshark.org/security/wnpa-sec-2014-08.html
www.wireshark.org/security/wnpa-sec-2014-09.html
www.wireshark.org/security/wnpa-sec-2014-10.html
www.wireshark.org/security/wnpa-sec-2014-11.html