Wireshark development team reports:
The following vulnerabilities have been fixed.
-
wnpa-sec-2015-12
The LBMR dissector could go into an infinite loop.
(Bug 11036) CVE-2015-3808, CVE-2015-3809
-
wnpa-sec-2015-13
The WebSocket dissector could recurse excessively.
(Bug 10989) CVE-2015-3810
-
wnpa-sec-2015-14
The WCP dissector could crash while decompressing data.
(Bug 10978) CVE-2015-3811
-
wnpa-sec-2015-15
The X11 dissector could leak memory. (Bug 11088)
CVE-2015-3812
-
wnpa-sec-2015-16
The packet reassembly code could leak memory.
(Bug 11129) CVE-2015-3813
-
wnpa-sec-2015-17
The IEEE 802.11 dissector could go into an infinite loop.
(Bug 11110) CVE-2015-3814
-
wnpa-sec-2015-18
The Android Logcat file parser could crash. Discovered by
Hanno Böck. (Bug 11188) CVE-2015-3815