Security update for wireshark

This update for wireshark fixes the following issues: CVE-2026-0959: IEEE 802.11 dissector crash bsc1256734. CVE-2026-0960: HTTP3 dissector infinite loop bsc1256736. CVE-2026-0962: SOME/IP-SD dissector crash bsc1256739. Patch Instructions: To install this SUSE update use the SUSE recommended...

SUSE-SU-2026:0237-1 Security update for wireshark

This update for wireshark fixes the following issues: - CVE-2026-0959: IEEE 802.11 dissector crash bsc1256734. - CVE-2026-0960: HTTP3 dissector infinite loop bsc1256736. - CVE-2026-0962: SOME/IP-SD dissector crash bsc1256739...

Wireshark 4.6.x < 4.6.3 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 4.6.3. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.6.3 advisory. - SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service...

Wireshark 4.6.x < 4.6.3 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.6.3. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.6.3 advisory. - SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of...

SUSE CVE-2026-0960

HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service...

CVE-2026-0960

A flaw was found in Wireshark. A local user could be affected by a denial of service when opening a specially crafted capture file containing HTTP3 protocol traffic. This vulnerability is caused by an infinite loop within the HTTP3 protocol dissector, leading to the application becoming...

Linux Distros Unpatched Vulnerability : CVE-2026-0960

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service CVE-2026-0960 Note that Nessus relies on the presence of the package...

CVE-2026-0960 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service...

CVE-2026-0960 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service...

CVE-2026-0960

HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service...

CVE-2026-0960 Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service...

PT-2026-2953

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.6.0 through 4.6.2 Description An infinite loop in the HTTP3 protocol dissector can lead to a denial of service. Recommendations Update to a newer version that contains a fix for this vulnerability...

GO-2026-4289 CoreDNS gRPC/HTTPS/HTTP3 servers lack resource limits, enabling DoS via unbounded connections and oversized messages in github.com/coredns/coredns

CoreDNS gRPC/HTTPS/HTTP3 servers lack resource limits, enabling DoS via unbounded connections and oversized messages in github.com/coredns/coredns...

EUVD-2026-1476

CoreDNS is a DNS server that chains plugins. Prior to version 1.14.0, multiple CoreDNS server implementations gRPC, HTTPS, and HTTP/3 lack critical resource-limiting controls. An unauthenticated remote attacker can exhaust memory and degrade or crash the server by opening many concurrent...

Linux Distros Unpatched Vulnerability : CVE-2025-13945

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service CVE-2025-13945 Note that Nessus relies on the presence of the package as reported by...

UBUNTU-CVE-2025-13945

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service...

CVE-2025-13945 Improperly Controlled Sequential Memory Allocation in Wireshark

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service...

OPENSUSE-SU-2025:20065-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Changes in MozillaFirefox: Firefox Extended Support Release 140.5.0 ESR: Fixed: Various security fixes MFSA 2025-88 bsc1253188: CVE-2025-13012 Race condition in the Graphics component CVE-2025-13016 Incorrect boundary conditions in the...

openSUSE Security Advisory (SUSE-SU-2025:03462-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EUVD-2025-27133

Malicious code in bioql PyPI...