19 matches found
SUSE: Security Advisory (SUSE-SU-2020:3166-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2020:3166-1)
This update for wireshark fixes the following issues : Update to wireshark 3.2.7 : - CVE-2020-25863: MIME Multipart dissector crash bsc1176908 - CVE-2020-25862: TCP dissector crash bsc1176909 - CVE-2020-25866: BLIP dissector crash bsc1176910 - CVE-2020-17498: Kafka dissector crash bsc1175204 Note...
openSUSE Security Update : wireshark (openSUSE-2020-1878)
This update for wireshark fixes the following issues : - Update to wireshark 3.2.7 : - CVE-2020-25863: MIME Multipart dissector crash bsc1176908 - CVE-2020-25862: TCP dissector crash bsc1176909 - CVE-2020-25866: BLIP dissector crash bsc1176910 - CVE-2020-17498: Kafka dissector crash bsc1175204 Th...
openSUSE Security Update : wireshark (openSUSE-2020-1882)
This update for wireshark fixes the following issues : - Update to wireshark 3.2.7 : - CVE-2020-25863: MIME Multipart dissector crash bsc1176908 - CVE-2020-25862: TCP dissector crash bsc1176909 - CVE-2020-25866: BLIP dissector crash bsc1176910 - CVE-2020-17498: Kafka dissector crash bsc1175204 Th...
openSUSE: Security Advisory for wireshark (openSUSE-SU-2020:1882-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
OPENSUSE-SU-2020:1882-1 Security update for wireshark
This update for wireshark fixes the following issues: - Update to wireshark 3.2.7: CVE-2020-25863: MIME Multipart dissector crash bsc1176908 CVE-2020-25862: TCP dissector crash bsc1176909 CVE-2020-25866: BLIP dissector crash bsc1176910 CVE-2020-17498: Kafka dissector crash bsc1175204 This update...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2020:1882-1 Rating: moderate References: 1175204 1176908 1176909 1176910 Cross-References: CVE-2020-17498 CVE-2020-25862 CVE-2020-25863 CVE-2020-25866 Affected Products: openSUSE Leap 15.2 An update that fixes fo...
openSUSE: Security Advisory for wireshark (openSUSE-SU-2020:1878-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE-SU-2020:3166-1 Security update for wireshark
This update for wireshark fixes the following issues: - Update to wireshark 3.2.7: CVE-2020-25863: MIME Multipart dissector crash bsc1176908 CVE-2020-25862: TCP dissector crash bsc1176909 CVE-2020-25866: BLIP dissector crash bsc1176910 CVE-2020-17498: Kafka dissector crash bsc1175204...
Fedora 33 : 1:wireshark (2020-9bda6ae1cd)
New version 3.2.7 Security fix for CVE-2020-25862, CVE-2020-25863, CVE-2020-25866 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 31 : 1:wireshark (2020-1b390bec14)
New version 3.2.7 Security fix for CVE-2020-25862, CVE-2020-25863, CVE-2020-25866 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora 32 : 1:wireshark (2020-1bf4b97c16)
New version 3.2.7 Security fix for CVE-2020-25862, CVE-2020-25863, CVE-2020-25866 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...
Fedora: Security Advisory for wireshark (FEDORA-2020-1bf4b97c16)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-25866
In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer dereference because a buffer was sized for compressed not uncompressed messages. This was addressed in epan/dissectors/packet-blip.c by allowing reasonable compression ratios and rejecting ZIP bombs...
CVE-2020-25866
Wireshark CVE-2020-25866 affects the BLIP protocol dissector. Versions 3.2.0–3.2.6 and 3.0.0–3.0.13 are vulnerable to a NULL pointer dereference caused by sizing buffers for compressed (not uncompressed) messages. The issue is mitigated in the fix where the code path in epan/dissectors/packet-bli...
Security fix for the ALT Linux 9 package wireshark version 3.2.7-alt1
3.2.7-alt1 built Oct. 5, 2020 Anton Farygin in task 258926 Sept. 30, 2020 Anton Farygin - 3.2.7 - fixes: BLIP dissector crash. CVE-2020-25866 TCP dissector crash. CVE-2020-25862 MIME Multipart dissector crash. CVE-2020-25863...
Wireshark 3.0.x < 3.0.14 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.0.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.0.14 advisory. - In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer...
Wireshark 3.2.x < 3.2.7 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.2.7. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.2.7 advisory. - In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer...
KLA12079 DoS vulnerabilties in Wireshark
DoS vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. DoS vulnerability in the BLIP dissector can be exploited via special crafted file to cause denial of service. 2. DoS...