40 matches found
Astra Linux – Vulnerability in Wireshark
In Wireshark versions 3.0.0 to 3.0.3, and 2.6.0 to 2.6.10, the Gryphon dissector could enter an infinite loop. This issue was addressed in the plugin file plugins/epan/gryphon/packet-gryphon.c by checking for a packet length of zero...
Unity Linux 20.1060e / 20.1070e Security Update: wireshark (UTSA-2026-005367)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005367 advisory. In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugins/epan/gryphon/packet-gryphon.c by...
EUVD-2019-7105
Malware in sbrugna...
EUVD-2021-34046
Malicious code in bioql PyPI...
RHEL 9 : wireshark (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wireshark: Kafka dissector infinite loop CVE-2021-4190 - Crash in the Sysdig Event dissector in Wireshark...
SUSE CVE-2019-16319
In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugins/epan/gryphon/packet-gryphon.c by checking for a message length of zero...
SUSE CVE-2021-4186
Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file...
GLSA-202210-04 : Wireshark: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202210-04 Wireshark: Multiple Vulnerabilities - Crash in DNP dissector in Wireshark 3.4.0 to 3.4.6 and 3.2.0 to 3.2.14 allows denial of service via packet injection or crafted capture file CVE-2021-22235 - NULL pointer exception i...
SUSE SLED15: libwireshark15 / libwiretap12 / libwsutil13 / wireshark / etc (SUSE-SU-2022:3309-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3309-1 advisory. Updated to Wireshark 3.6.8: - CVE-2022-3190: Fixed F5 Ethernet Trailer dissector infinite loop...
SUSE-SU-2022:3309-1 Security update for wireshark
This update for wireshark fixes the following issues: Updated to Wireshark 3.6.8: - CVE-2022-3190: Fixed F5 Ethernet Trailer dissector infinite loop bsc1203388. - CVE-2021-4186: Fixed Gryphon dissector crash bsc1194165...
Mageia: Security Advisory (MGASA-2019-0282)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
...
Denial Of Service (DoS)
wireshark is vulnerable to denial of service. The vulnerability exists because of a fuzz job in the Gryphon dissector which allows an attacker to crash the application via packet injection or crafted capture file...
Wireshark RTMPT Parser Denial of Service Vulnerability
Wireshark formerly Ethereal is a set of network packet analysis software from the Wireshark team. Gryphon dissector is one of the Gryphon protocol parsers. 3.6.0 and 3.4.0 - 3.4.10 versions of Wireshark contain a security vulnerability that could be exploited to cause a denial of service via pack...
Wireshark Injection Vulnerability (CNVD-2022-11201)
Wireshark formerly Ethereal is a set of network packet analysis software from the Wireshark team. Gryphon dissector is one of the Gryphon protocol parsers. An attacker could exploit this vulnerability to cause a denial of service via packet injection or specially crafted capture files...
Wireshark input validation error vulnerability
Wireshark formerly Ethereal is a set of network packet analysis software from the Wireshark team. Gryphon dissector is one of the Gryphon protocol parsers. An input validation error vulnerability exists in Wireshark, which stems from the product's failure to process Kafka messages effectively. An...
AZL-7421 CVE-2021-4186 affecting package wireshark for versions less than 3.4.14-1
Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file...
DEBIAN-CVE-2021-4186
Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file...
CVE-2021-4186
Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file...
UBUNTU-CVE-2021-4186
Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file...