20 matches found
CLSA-2025-1765984777 wireshark: Fix of CVE-2023-2906
CVE-2023-2906: fix for potential crash in cp2179 dissector packet-cp2179.c...
Azure Linux 3.0 Security Update: wireshark (CVE-2023-2906)
The version of wireshark installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2906 advisory. - Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark version...
CVE-2023-2906 affecting package wireshark for versions less than 4.4.7-1
CVE-2023-2906 affecting package wireshark for versions less than 4.4.7-1. An upgraded version of the package is available that resolves this issue...
TencentOS Server 4: wireshark (TSSA-2024:0345)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0345 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
Linux Distros Unpatched Vulnerability : CVE-2023-2906
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by ze...
RHEL 9 : wireshark (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wireshark: Kafka dissector infinite loop CVE-2021-4190 - Crash in the Sysdig Event dissector in Wireshark...
Advisory ROSA-SA-2024-2390
Software: wireshark 4.0.10 OS: ROSA-CHROME packageevrstring: wireshark-4.0.10-1.src.rpm CVE-ID: CVE-2023-2858 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: NetScaler file analyzer failure in Wireshark allows a denial of service via a created capture file. CVE-STATUS: Fixed CVE-REV: To close, run the...
Fedora 39 : wireshark (2023-b57a9be8a8)
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-b57a9be8a8 advisory. New version 4.0.8. Includes fixes for CVE-2023-2906, CVE-2023-4511, CVE-2023-4512, CVE-2023-4513. Tenable has extracted the preceding description...
CBL Mariner 2.0 Security Update: wireshark (CVE-2023-2906)
The version of wireshark installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2906 advisory. - Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark version...
SUSE SLED15: libwireshark15 / libwiretap12 / libwsutil13 / wireshark / etc (SUSE-SU-2023:3778-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3778-1 advisory. - Wireshark update to v3.6.16. - CVE-2023-4512: Fixed a bug in CBOR dissector which could lead t...
Medium: wireshark
Issue Overview: Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack. CVE-2023-2906 BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and...
Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-348)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-348 advisory. Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of servi...
Fedora: Security Advisory (FEDORA-2023-b57a9be8a8)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 37 : wireshark (2023-920a3ab4ee)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-920a3ab4ee advisory. New version 4.0.8. Includes fixes for CVE-2023-2906, CVE-2023-4511, CVE-2023-4512, CVE-2023-4513. Tenable has extracted the preceding description...
Fedora: Security Advisory for wireshark (FEDORA-2023-920a3ab4ee)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 38 : wireshark (2023-abc9ca1e7e)
The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-abc9ca1e7e advisory. New version 4.0.8. Includes fixes for CVE-2023-2906, CVE-2023-4511, CVE-2023-4512, CVE-2023-4513. Tenable has extracted the preceding description...
CVE-2023-2906
Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack...
CVE-2023-2906
Wireshark CVE-2023-2906 is a CP2179 length validation failure leading to a divide-by-zero DoS. Affected: Wireshark 2.0.0–4.0.7. Root cause: attacker-crafted CP2179 packet length not properly validated. Impact: denial of service via crashes or resource exhaustion as described in multiple sources. ...
CVE-2023-2906
Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack...
CVE-2023-2906 Wireshark CP2179 divide by zero
Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack...