| In Wireshark 2.6.0, 2.4.0 a 2.4.6 e 2.2.0 a 2.2.14, il dissettore Q.931 potrebbe bloccarsi. Questo è stato affrontato in epan / dissettori / packet-q931.c evitando un uso-after-free dopo un pacchetto valido impedito certa pulizia. |
| http://www.securityfocus.com/bid/104308 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14689 https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=ccb1ac3c8cec47fbbbf2e80ced80644005c65252 https://www.wireshark.org/security/wnpa-sec-2018-31.html https://www.debian.org/security/2018/dsa-4217 https://lists.debian.org/debian-lts-announce/2018/05/msg00019.html http://www.securitytracker.com/id/1041036 http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11358 |
Vulnerabilità: CVE-2018-11358
