24 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-1161
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file...
RHEL 9 : wireshark (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wireshark: Kafka dissector infinite loop CVE-2021-4190 - wireshark: ISO 15765 and ISO 10681 dissector cra...
Advisory ROSA-SA-2023-2257
Software: wireshark 4.0.5 OS: ROSA-CHROME packageevrstring: wireshark-4.0.5-1.src.rpm CVE-ID: CVE-2022-4344 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A memory shortage in the Kafka protocol dissector in Wireshark versions 4.0.0.0-4.0.1 and 3.6.0-3.6.9 allows denial of service via packet injection ...
GLSA-202309-02 : Wireshark: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202309-02 Wireshark: Multiple Vulnerabilities - Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8 allows denial of service via packet injection or crafted capture file CVE-2022-3725 - Due to failure in validating th...
[SECURITY] [DSA 5429-1] wireshark security update
------------------------------------------------------------------------- Debian Security Advisory DSA-5429-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 15, 2023 https://www.debian.org/security/faq -...
Security fix for the ALT Linux 10 package wireshark version 4.0.5-alt1
4.0.5-alt1 built May 9, 2023 Anton Farygin in task 319886 May 4, 2023 Anton Farygin - 4.0.5 - Fixes: CVE-2023-1994 GQUIC dissector crash. CVE-2023-1993 LISP dissector large loop. CVE-2023-1992 RPCoRDMA dissector crash. CVE-2023-1161 ISO 15765 and ISO 10681 dissector crash...
Debian: Security Advisory (DLA-3402-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian dla-3402 : libwireshark-data - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3402 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3402-1 [email protected]...
[SECURITY] [DLA 3402-1] wireshark security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3402-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk April 29, 2023 https://wiki.debian.org/LTS -...
Medium: wireshark
Issue Overview: ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file CVE-2023-1161 Affected Packages: wireshark Issue Correction: Run dnf update wireshark --releasever 2023.0.20230329 or dnf...
Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-152)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-152 advisory. ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file CVE-2023-1161 Tenable has extracted the...
SUSE SLED15: libwireshark15 / libwiretap12 / libwsutil13 / wireshark / etc (SUSE-SU-2023:1762-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:1762-1 advisory. - CVE-2023-1161: Fixed crash in ISO 15765 and ISO 10681 dissector bsc1208914. Update to 3.6.12:...
SUSE-SU-2023:1762-1 Security update for wireshark
This update for wireshark fixes the following issues: - CVE-2023-1161: Fixed crash in ISO 15765 and ISO 10681 dissector bsc1208914. Update to 3.6.12: https://www.wireshark.org/docs/relnotes/wireshark-3.6.12.html...
OESA-2023-1189 wireshark security update
Wireshark is an open source tool for profiling network traffic and analyzing packets. Such a tool is often referred to as a network analyzer, network protocol analyzer or sniffer.Wireshark, formerly known as Ethereal, can be used to examine the details of traffic at a variety of levels ranging fr...
Wireshark Security Update (wnpa-sec-2023-08) - Linux
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
Wireshark Security Update (wnpa-sec-2023-08) - Windows
Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...
UBUNTU-CVE-2023-1161
ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file...
CVE-2023-1161
ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file...
Wireshark 3.6.x < 3.6.12 A Vulnerability (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.6.12. It is, therefore, affected by a vulnerability as referenced in the wireshark-3.6.12 advisory. - The ISO 15765 and ISO 10681 dissectors could crash. It may be possible to make Wireshark crash by injecting a...
CVE-2023-1161
ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file...