| Max CVSS | 5.0 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-10903 | 5.0 |
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was addressed in epan/dissectors/packet-dcerpc-spoolss.c by adding a boundary check.
|
27-02-2023 - 15:28 | 09-04-2019 - 04:29 | |
| CVE-2019-10896 | 5.0 |
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DOF dissector could crash. This was addressed in epan/dissectors/packet-dof.c by properly handling generated IID and OID bytes.
|
27-02-2023 - 15:28 | 09-04-2019 - 04:29 | |
| CVE-2019-10894 | 5.0 |
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called.
|
27-02-2023 - 15:28 | 09-04-2019 - 04:29 | |
| CVE-2019-10901 | 5.0 |
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly.
|
27-02-2023 - 15:28 | 09-04-2019 - 04:29 | |
| CVE-2019-10895 | 5.0 |
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation.
|
03-05-2022 - 14:50 | 09-04-2019 - 04:29 | |
| CVE-2019-10899 | 5.0 |
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC dissector could crash. This was addressed in epan/dissectors/packet-srvloc.c by preventing a heap-based buffer under-read.
|
03-05-2022 - 14:50 | 09-04-2019 - 04:29 | |
| CVE-2019-12295 | 5.0 |
In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed in epan/packet.c by restricting the number of layers and consequently limiting recursion.
|
03-05-2022 - 14:27 | 23-05-2019 - 12:29 |