Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:ALSA-2023:6469
HistoryNov 07, 2023 - 12:00 a.m.

Moderate: wireshark security update

2023-11-0700:00:00
Google
osv.dev
9
wireshark
security update
network protocol analyzer
cve-2023-0666
cve-2023-0668
cve-2023-2855
cve-2023-2856
cve-2023-2858
cve-2023-2952
almalinux
release notes

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.5%

JSON

The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network.

Security Fix(es):

  • wireshark: RTPS dissector crash (CVE-2023-0666)
  • wireshark: IEEE C37.118 Synchrophasor dissector crash (CVE-2023-0668)
  • wireshark: Candump log file parser crash (CVE-2023-2855)
  • wireshark: VMS TCPIPtrace file parser crash (CVE-2023-2856)
  • wireshark: NetScaler file parser crash (CVE-2023-2858)
  • wireshark: XRA dissector infinite loop (CVE-2023-2952)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

Related

redhat 2
oraclelinux 2
almalinux 2
nessus 18
osv 9
kaspersky 1
debian 2
openvas 3
amazon 1
gentoo 1
rosalinux 2
ubuntucve 6
cvelist 6
debiancve 6
nvd 6
veracode 6
redhatcve 6
prion 6
cve 6
cnvd 2
photon 4
redhat
redhat
(RHSA-2023:6469) Moderate: wireshark security update
2023-11-07 06:06:26
(RHSA-2023:7015) Moderate: wireshark security update
2023-11-14 08:42:43
oraclelinux
oraclelinux
wireshark security update
2023-11-11 00:00:00
wireshark security update
2023-11-17 00:00:00
almalinux
almalinux
Moderate: wireshark security update
2023-11-07 00:00:00
Moderate: wireshark security update
2023-11-14 00:00:00
nessus
nessus
Oracle Linux 9 : wireshark (ELSA-2023-6469)
2023-11-16 00:00:00
RHEL 9 : wireshark (RHSA-2023:6469)
2023-11-07 00:00:00
CentOS 8 : wireshark (CESA-2023:7015)
2023-11-14 00:00:00
osv
osv
Moderate: wireshark security update
2023-11-14 00:00:00
wireshark - security update
2023-06-03 00:00:00
wireshark - security update
2023-06-15 00:00:00
kaspersky
kaspersky
KLA61756 Multiple vulnerabilities in Wireshark
2023-05-24 00:00:00
debian
debian
[SECURITY] [DLA 3443-1] wireshark security update
2023-06-03 16:29:18
[SECURITY] [DSA 5429-1] wireshark security update
2023-06-15 18:05:29
openvas
openvas
Debian: Security Advisory (DLA-3443-1)
2023-06-05 00:00:00
openSUSE: Security Advisory for wireshark (SUSE-SU-2023:3252-1)
2024-03-04 00:00:00
Debian: Security Advisory (DSA-5429-1)
2023-06-16 00:00:00
amazon
amazon
Medium: wireshark
2023-08-03 18:10:00
gentoo
gentoo
Wireshark: Multiple Vulnerabilities
2023-09-17 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2024-2388
2024-04-02 07:22:04
Advisory ROSA-SA-2024-2390
2024-04-02 07:35:41
ubuntucve
ubuntucve
CVE-2023-2858
2023-05-26 00:00:00
CVE-2023-2855
2023-05-26 00:00:00
CVE-2023-2856
2023-05-26 00:00:00
cvelist
cvelist
CVE-2023-2858
2023-05-26 00:00:00
CVE-2023-0668 Wireshark IEEE-C37.118 parsing buffer overflow
2023-06-07 02:32:45
CVE-2023-2855
2023-05-26 00:00:00
debiancve
debiancve
CVE-2023-2858
2023-05-26 21:15:18
CVE-2023-0668
2023-06-07 03:15:09
CVE-2023-2855
2023-05-26 21:15:17
nvd
nvd
CVE-2023-2856
2023-05-26 21:15:17
CVE-2023-0668
2023-06-07 03:15:09
CVE-2023-2855
2023-05-26 21:15:17
veracode
veracode
Denial Of Service (DoS)
2023-08-07 00:55:58
Denial Of Service (DoS)
2023-08-07 00:55:59
Heap-based Buffer Overflow
2023-08-06 23:22:44
redhatcve
redhatcve
CVE-2023-0668
2023-05-29 17:10:18
CVE-2023-2858
2023-05-29 17:10:38
CVE-2023-2855
2023-05-29 16:40:08
prion
prion
Heap overflow
2023-06-07 03:15:00
Design/Logic Flaw
2023-05-26 21:15:00
Design/Logic Flaw
2023-05-26 21:15:00
cve
cve
CVE-2023-2858
2023-05-26 21:15:18
CVE-2023-2856
2023-05-26 21:15:17
CVE-2023-2855
2023-05-26 21:15:17
cnvd
cnvd
Wireshark Buffer Overflow Vulnerability (CNVD-2023-43872)
2023-05-30 00:00:00
Wireshark Denial of Service Vulnerability (CNVD-2023-62288)
2023-05-31 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2023-3.0-0597
2023-06-14 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0404
2023-06-07 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0620
2023-07-28 00:00:00

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.5%

JSON
Related for OSV:ALSA-2023:6469
redhat2oraclelinux2almalinux2nessus18osv9kaspersky1debian2openvas3amazon1gentoo1rosalinux2ubuntucve6cvelist6debiancve6nvd6veracode6redhatcve6prion6cve6cnvd2photon4