CVE-2018-11354

CVE-2018-11354

Name

CVE-2018-11354

Description

In Wireshark 2.6.0, the IEEE 1905.1a dissector could crash. This was addressed in epan/dissectors/packet-ieee1905.c by making a certain correction to string handling.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Vendor Advisory	https://www.wireshark.org/security/wnpa-sec-2018-26.html
Patch	https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cb517a4a434387e74a2f75ebb106ee3c3893251c
Issue Tracking	https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14647
Third Party Advisory	http://www.securityfocus.com/bid/104308
Third Party Advisory	http://www.securitytracker.com/id/1041036
SUSE	http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html

Type

URI

Vendor Advisory

https://www.wireshark.org/security/wnpa-sec-2018-26.html

Patch

https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cb517a4a434387e74a2f75ebb106ee3c3893251c

Issue Tracking

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14647

Third Party Advisory

http://www.securityfocus.com/bid/104308

Third Party Advisory

http://www.securitytracker.com/id/1041036