7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.004 Low
EPSS
Percentile
72.8%
Package : wireshark
Version : 1.12.1+g01b65bf-4+deb8u19
CVE ID : CVE-2019-10894 CVE-2019-10895 CVE-2019-10899 CVE-2019-10901
CVE-2019-10903
Debian Bug : 926718
Several vulnerabilities have been found in wireshark, a network traffic analyzer.
CVE-2019-10894
Assertion failure in dissect_gssapi_work (packet-gssapi.c) leading to
crash of the GSS-API dissector. Remote attackers might leverage this
vulnerability to trigger DoS via a packet containing crafted GSS-API
payload.
CVE-2019-10895
Insufficient data validation leading to large number of heap buffer
overflows read and write in the NetScaler trace handling module
(netscaler.c). Remote attackers might leverage these vulnerabilities to
trigger DoS, or any other unspecified impact via crafted packets.
CVE-2019-10899
Heap-based buffer under-read vulnerability in the Service Location
Protocol dissector. Remote attackers might leverage these
vulnerabilities to trigger DoS, or any other unspecified impact via
crafted SRVLOC packets.
CVE-2019-10901
NULL pointer dereference in the Local Download Sharing Service
protocol dissector. Remote attackers might leverage these flaws to
trigger DoS via crafted LDSS packets.
CVE-2019-10903
Missing boundary checks leading to heap out-of-bounds read
vulnerability in the Microsoft Spool Subsystem protocol dissector.
Remote attackers might leverage these vulnerabilities to trigger DoS,
or any other unspecified impact via crafted SPOOLSS packets.
For Debian 8 "Jessie", these problems have been fixed in version
1.12.1+g01b65bf-4+deb8u19.
We recommend that you upgrade your wireshark packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 8 | armel | libwiretap4 | < 1.12.1+g01b65bf-4+deb8u19 | libwiretap4_1.12.1+g01b65bf-4+deb8u19_armel.deb |
Debian | 9 | amd64 | wireshark-qt | < 2.6.8-1.1~deb9u1 | wireshark-qt_2.6.8-1.1~deb9u1_amd64.deb |
Debian | 9 | amd64 | libwsutil-dev | < 2.6.8-1.1~deb9u1 | libwsutil-dev_2.6.8-1.1~deb9u1_amd64.deb |
Debian | 9 | armel | libwiretap-dev | < 2.6.8-1.1~deb9u1 | libwiretap-dev_2.6.8-1.1~deb9u1_armel.deb |
Debian | 9 | armel | wireshark-qt | < 2.6.8-1.1~deb9u1 | wireshark-qt_2.6.8-1.1~deb9u1_armel.deb |
Debian | 9 | i386 | libwireshark11 | < 2.6.8-1.1~deb9u1 | libwireshark11_2.6.8-1.1~deb9u1_i386.deb |
Debian | 9 | amd64 | libwiretap8 | < 2.6.8-1.1~deb9u1 | libwiretap8_2.6.8-1.1~deb9u1_amd64.deb |
Debian | 8 | i386 | tshark | < 1.12.1+g01b65bf-4+deb8u19 | tshark_1.12.1+g01b65bf-4+deb8u19_i386.deb |
Debian | 8 | armel | wireshark | < 1.12.1+g01b65bf-4+deb8u19 | wireshark_1.12.1+g01b65bf-4+deb8u19_armel.deb |
Debian | 9 | i386 | libwiretap8 | < 2.6.8-1.1~deb9u1 | libwiretap8_2.6.8-1.1~deb9u1_i386.deb |
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.004 Low
EPSS
Percentile
72.8%