EUVD-2019-15291

Malware in sbrugna...

The vulnerability in the P_MUL protocol of the Wireshark network traffic analyzer software lies in insufficient validation of input data, allowing a hacker to trigger a service failure.

The vulnerability in the PMUL protocol of the Wireshark network traffic analyzer tool is related to the assignment of the zero pointer. Exploiting this vulnerability can allow a malicious actor to cause a service failure...

[SECURITY] [DSA 4416-1] wireshark security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4416-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso March 24, 2019 https://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-4416-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 1645-1] wireshark security update

Package : wireshark Version : 1.12.1+g01b65bf-4+deb8u17 CVE ID : CVE-2019-5716 CVE-2019-5717 CVE-2019-5719 Several issues in wireshark, a network traffic analyzer, have been found. Dissectors of - ISAKMP, a Internet Security Association and Key Management Protocol - PMUL, a reliable multicast...

Security update for wireshark (moderate)

openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2019:0092-1 Rating: moderate References: 1121232 1121233 1121234 1121235 Cross-References: CVE-2019-5717 CVE-2019-5718 CVE-2019-5719 CVE-2019-5721 Affected Products: openSUSE Leap 15.0 An update that fixes four...

Debian: Security Advisory (DLA-1645-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2019:0138-1)

This update for wireshark to version 2.4.12 fixes the following issues : Security issues fixed : CVE-2019-5717: Fixed a denial of service in the PMUL dissector bsc1121232 CVE-2019-5718: Fixed a denial of service in the RTSE dissector and other dissectors bsc1121233 CVE-2019-5719: Fixed a denial o...

SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2019:0130-1)

This update for wireshark to version 2.4.12 fixes the following issues : Security issues fixed : CVE-2019-5717: Fixed a denial of service in the PMUL dissector bsc1121232 CVE-2019-5718: Fixed a denial of service in the RTSE dissector and other dissectors bsc1121233 CVE-2019-5719: Fixed a denial o...

CVE-2019-5717

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the PMUL dissector could crash. This was addressed in epan/dissectors/packet-pmul.c by rejecting the invalid sequence number of zero...

Security fix for the ALT Linux 9 package wireshark version 2.6.6-alt1

Jan. 13, 2019 Anton Farygin 2.6.6-alt1 - 2.6.6 - fixes: The 6LoWPAN dissector could crash. CVE-2019-5716 The PMUL dissector could crash. CVE-2019-5717 The RTSE dissector and other dissectors could crash. CVE-2019-5718 The ISAKMP dissector could crash. CVE-2019-5719...

Wireshark 2.6.x < 2.6.6 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 2.6.6. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.6.6 advisory. - In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was addressed in...

Wireshark 2.4.x < 2.4.12 Multiple Vulnerabilities

The version of Wireshark installed on the remote Windows host is prior to 2.4.12. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.12 advisory. - In Wireshark 2.4.0 to 2.4.11, the ENIP dissector could crash. This was addressed in...

Wireshark 2.4.x < 2.4.12 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 2.4.12. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-2.4.12 advisory. - In Wireshark 2.4.0 to 2.4.11, the ENIP dissector could crash. This was addressed in...

[ASA-201901-5] wireshark-cli: multiple issues

Arch Linux Security Advisory ASA-201901-5 ========================================= Severity: Medium Date : 2019-01-10 CVE-ID : CVE-2019-5716 CVE-2019-5717 CVE-2019-5718 CVE-2019-5719 Package : wireshark-cli Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-844 Summary...

Wireshark Denial of Service Vulnerability (CNVD-2019-06164)

Wireshark formerly known as Ethereal is a network packet analyzer software developed by the Wireshark team. The function of the software is to intercept network packets and display detailed data for analysis. A security vulnerability exists in Wireshark versions 2.6.0 through 2.6.5 and 2.4.0...

CVE-2019-5717

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the PMUL dissector could crash. This was addressed in epan/dissectors/packet-pmul.c by rejecting the invalid sequence number of zero...

CVE-2019-5717

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the PMUL dissector could crash. This was addressed in epan/dissectors/packet-pmul.c by rejecting the invalid sequence number of zero...

CVE-2019-5717

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the PMUL dissector could crash. This was addressed in epan/dissectors/packet-pmul.c by rejecting the invalid sequence number of zero...

Code injection

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the PMUL dissector could crash. This was addressed in epan/dissectors/packet-pmul.c by rejecting the invalid sequence number of zero...