18 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-4184
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file...
RHEL 9 : wireshark (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wireshark: Kafka dissector infinite loop CVE-2021-4190 - Crash in the Sysdig Event dissector in Wireshark...
Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-038)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-038 advisory. A NULL pointer exception flaw was found in Wireshark. A process failure on crafted or malformed input in the IPPUSB dissector can cause a denial of service via a packet injection or a crafted...
Amazon Linux 2022 : wireshark (ALAS2022-2022-226)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-226 advisory. - NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file CVE-2021-39920 - NULL pointer exception in the...
Debian DLA-2967-1 : wireshark - LTS security update
The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2967 advisory. Multiple security vulnerabilities have been discovered in Wireshark, a network traffic analyzer. An attacker could cause a denial of service infinite loop or...
openSUSE 15 Security Update : wireshark (openSUSE-SU-2022:0375-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0375-1 advisory. - Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted captu...
SUSE: Security Advisory (SUSE-SU-2022:0375-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for wireshark (openSUSE-SU-2022:0375-1)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2022:0375-1)
The remote SUSE Linux SLED15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0375-1 advisory. - Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2022:0375-1 Rating: moderate References: 1194166 1194167 1194168 1194169 1194170 1194171 1194780 SLE-18727 Cross-References: CVE-2021-4181 CVE-2021-4182 CVE-2021-4183 CVE-2021-4184 CVE-2021-4185 CVE-2021-4190 CVS...
Security fix for the ALT Linux 10 package wireshark version 3.6.1-alt1
3.6.1-alt1 built Jan. 20, 2022 Anton Farygin in task 293173 Jan. 3, 2022 Anton Farygin - 3.6.1 Fixes: CVE-2021-4185, CVE-2021-4184, CVE-2021-4183, CVE-2021-4182, CVE-2021-4181...
CVE-2021-4184
An infinite-loop flaw was found in Wireshark's DHT dissector module. This flaw allows an attacker with local network access to pass specially crafted capture files, causing an application to halt, crash or go into an infinite loop...
CVE-2021-4184
Wireshark CVE-2021-4184 is an infinite-loop DoS in the BitTorrent DHT dissector. Affected: Wireshark 3.6.0 and 3.4.0–3.4.10. Root cause: BitTorrent DHT parser infinite loop leading to application halt/crash via crafted capture files or packet injections. Publicly stated fixes exist in later Wires...
CVE-2021-4184
Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file...
CVE-2021-4184
Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file...
KLA12409 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in RTMPT dissector can be exploited via special crafted packet to cause denial of service...
Wireshark 3.6.x < 3.6.1 Multiple Vulnerabilities (macOS)
The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.6.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.6.1 advisory. - Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or...
Wireshark 3.6.x < 3.6.1 Multiple Vulnerabilities
The version of Wireshark installed on the remote Windows host is prior to 3.6.1. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.6.1 advisory. - Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted...