211 matches found
Huawei EulerOS: Security Advisory for wireshark (EulerOS-SA-2021-2438)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP2 : wireshark (EulerOS-SA-2021-2438)
According to the versions of the wireshark packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Wireshark is a network traffic analyzer for Unix-ish operating systems.This package lays base for libpcap, a packet capture and filtering...
EulerOS 2.0 SP3 : wireshark (EulerOS-SA-2021-1859)
According to the versions of the wireshark packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the SIGCOMP dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by...
bind: Buffer overflow in the SPNEGO implementation affecting GSSAPI security policy negotiation
A buffer overflow flaw was found in the SPNEGO implementation used by BIND. This flaw allows a remote attacker to cause the named process to crash or possibly perform remote code execution. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
Debian DLA-2423-1 : wireshark security update
Several vulnerabilities were fixed in the Wireshark network protocol analyzer. CVE-2019-10894 GSS-API dissector crash CVE-2019-10895 NetScaler file parser crash CVE-2019-10896 DOF dissector crash CVE-2019-10899 SRVLOC dissector crash CVE-2019-10901 LDSS dissector crash CVE-2019-10903 DCERPC SPOOL...
Denial Of Service (DoS)
Wireshark is vulnerable to denial of service DoS. the GSS-API dissector could crash due to a flaw in epan/dissectors/packet-gssapi.c if a valid dissector is not called...
Denial Of Service (DoS)
krb5 is vulnerable to denial of service DoS. The vulnerability exists as a NULL pointer dereference flaw was discovered in the MIT Kerberos Generic Security Service Application Program Interface GSS-API library. A remote, authenticated attacker could use this flaw to crash any server application...
EulerOS 2.0 SP5 : wireshark (EulerOS-SA-2020-1139)
According to the versions of the wireshark packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by...
CVE-2019-10894
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called...
openSUSE Security Update : wireshark (openSUSE-2019-1390)
This update for wireshark to version 2.4.14 fixes the following issues : Security issues fixed : - CVE-2019-10895: NetScaler file parser crash. - CVE-2019-10899: SRVLOC dissector crash. - CVE-2019-10894: GSS-API dissector crash. - CVE-2019-10896: DOF dissector crash. - CVE-2019-10901: LDSS...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2019:1390-1 Rating: moderate References: 1127367 1127369 1127370 1131945 Cross-References: CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10899 CVE-2019-10901 CVE-2019-10903 CVE-2019-9208 CVE-2019-9209...
openSUSE Security Update : wireshark (openSUSE-2019-1356)
This update for wireshark to version 2.4.14 fixes the following issues : Security issues fixed : - CVE-2019-10895: NetScaler file parser crash. - CVE-2019-10899: SRVLOC dissector crash. - CVE-2019-10894: GSS-API dissector crash. - CVE-2019-10896: DOF dissector crash. - CVE-2019-10901: LDSS...
SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2019:1038-1)
This update for wireshark to version 2.4.14 fixes the following issues : Security issues fixed : CVE-2019-10895: NetScaler file parser crash. CVE-2019-10899: SRVLOC dissector crash. CVE-2019-10894: GSS-API dissector crash. CVE-2019-10896: DOF dissector crash. CVE-2019-10901: LDSS dissector crash...
Wireshark 3.0.x < 3.0.1 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 3.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.0.1 advisory. - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was...
Wireshark 2.4.x < 2.4.14 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.4.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.14 advisory. - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. Th...
Wireshark 2.6.x < 2.6.8 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 2.6.8. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.6.8 advisory. - In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was...
Wireshark 2.4.14, 2.6.8, 3.0.1 Security Updates (Apr 2019) - Mac OS X
Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...
Wireshark 2.4.14, 2.6.8, 3.0.1 Security Updates (Apr 2019) - Windows
Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...
Security fix for the ALT Linux 9 package wireshark version 3.0.1-alt1
April 10, 2019 Anton Farygin 3.0.1-alt1 - 3.0.1 - fixes: NetScaler file parser crash. CVE-2019-10895 SRVLOC dissector crash. CVE-2019-10899 IEEE 802.11 dissector infinite loop. CVE-2019-10897 GSUP dissector infinite loop. CVE-2019-10898 Rbm dissector infinite loop. CVE-2019-10900 GSS-API dissecto...
CVE-2019-10894
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called...