Lucene search
GoogleOSV:SUSE-SU-2024:2265-1HistoryJul 02, 2024 - 8:14 a.m.
Security update for wireshark
2024-07-0208:14:42
Google
osv.dev
wireshark
version 3.6.22
security update
cve-2024-4854
cve-2024-4853
cve-2024-4855
mongo
zigbee
tlv dissector
infinite loops
editcap command line utility
crash
chopping bytes
injecting secrets
writing multiple files
software
CVSS3
6.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H
AI Score
7.2
Confidence
Low
This update for wireshark fixes the following issues:
Update to version 3.6.22:
- CVE-2024-4854: MONGO and ZigBee TLV dissector infinite loops (bsc#1224274)
- CVE-2024-4853: The editcap command line utility could crash
when chopping bytes from the beginning of a packet (bsc#1224259) - CVE-2024-4855: The editcap command line utility could crash
when injecting secrets while writing multiple files (bsc#1224276)
Related
mageia
mageia
Updated wireshark packages fix security vulnerabilities
2024-06-03 21:30:48
nessus
nessus
Wireshark 4.2.x < 4.2.5 Multiple Vulnerabilities (macOS)
2024-05-15 00:00:00
Fedora 40 : wireshark (2024-cd1f01e5d9)
2024-05-31 00:00:00
openvas
openvas
openSUSE: Security Advisory for wireshark (SUSE-SU-2024:2265-1)
2024-07-10 00:00:00
Fedora: Security Advisory (FEDORA-2024-ed93e6d44f)
2024-06-07 00:00:00
openSUSE: Security Advisory for wireshark (SUSE-SU-2024:1865-1)
2024-08-20 00:00:00
osv
osv
libwireshark17-4.2.5-1.1 on GA media
2024-06-15 00:00:00
CVE-2024-4855
2024-05-14 15:45:19
CVE-2024-4853
2024-05-14 15:45:18
fedora
fedora
[SECURITY] Fedora 39 Update: wireshark-4.0.15-1.fc39
2024-05-31 02:14:13
[SECURITY] Fedora 40 Update: wireshark-4.2.5-1.fc40
2024-05-31 01:17:07
photon
photon
Moderate Photon OS Security Update - PHSA-2024-5.0-0275
2024-05-22 00:00:00
Moderate Photon OS Security Update - PHSA-2024-4.0-0614
2024-05-22 00:00:00
redos
redos
ROS-20240606-03
2024-06-06 00:00:00
nvd
nvd
redhatcve
redhatcve
veracode
veracode
Denial Of Service (DOS)
2024-05-23 11:16:48
Use After Free
2024-05-23 11:17:18
Denial Of Service (DOS)
2024-05-23 11:16:06
debiancve
debiancve
alpinelinux
alpinelinux
cve
cve
ubuntucve
ubuntucve
vulnrichment
vulnrichment
CVE-2024-4853 Mismatched Memory Management Routines in editcap
2024-05-14 00:03:07
CVE-2024-4855 Use After Free in editcap
2024-05-14 00:03:17
cvelist
cvelist
CVE-2024-4855 Use After Free in editcap
2024-05-14 00:03:17
CVE-2024-4853 Mismatched Memory Management Routines in editcap
2024-05-14 00:03:07
kaspersky
kaspersky
KLA70415 DoS vulnerability in Wireshark
2024-05-15 00:00:00
CVSS3
6.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H
AI Score
7.2
Confidence
Low
Related for OSV:SUSE-SU-2024:2265-1