34 matches found
CVE-2026-5404
Wireshark is affected by CVE-2026-5404 due to a buffer copy without size checking in the K12 RF5 file parser, impacting Wireshark versions 4.6.0–4.6.4 and 4.4.0–4.4.14 and causing a denial of service. The root cause is an unchecked input size during parsing. A fix appears in Wireshark 4.6.5 (per ...
CVE-2026-7375
UDS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...
RockyLinux 10 : wireshark (RLSA-2026:1714)
The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:1714 advisory. Wireshark: NULL Pointer Dereference in Wireshark CVE-2025-9817 Tenable has extracted the preceding description block directly from the RockyLinux security...
Linux Distros Unpatched Vulnerability : CVE-2025-11626
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service CVE-2025-11626 Note that Nessus relies on the presence of...
EUVD-2014-5061
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2023-0667
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to failure in validating the length provided by an attacker-crafted MSMMS packet, Wireshark version 4.0.5 and prior, in an unusual configuration, is...
Linux Distros Unpatched Vulnerability : CVE-2014-2907
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The srtpaddaddress function in epan/dissectors/packet-rtp.c in the RTP dissector in Wireshark 1.10.x before 1.10.7 does not properly update SRTP conversation...
Linux Distros Unpatched Vulnerability : CVE-2014-4020
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dissectframe function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a leng...
Linux Distros Unpatched Vulnerability : CVE-2017-11406
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by...
Linux Distros Unpatched Vulnerability : CVE-2017-15191
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validatin...
Linux Distros Unpatched Vulnerability : CVE-2015-2191
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the dissecttnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4...
Linux Distros Unpatched Vulnerability : CVE-2016-5357
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which...
Linux Distros Unpatched Vulnerability : CVE-2017-9350
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the openSAFETY dissector could crash or exhaust system memory. This was addressed in...
Linux Distros Unpatched Vulnerability : CVE-2015-8711
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate conversation data, which allows...
Linux Distros Unpatched Vulnerability : CVE-2015-6248
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ptvcursoradd function in the ptvcursor implementation in epan/proto.c in Wireshark 1.12.x before 1.12.7 does not check whether the expected amount of data i...
Linux Distros Unpatched Vulnerability : CVE-2014-5164
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The rlcdecodeli function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.10.x before 1.10.9 initializes a certain structure member only afte...
Linux Distros Unpatched Vulnerability : CVE-2015-8716
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The initt38infoconv function in epan/dissectors/packet-t38.c in the T.38 dissector in Wireshark 1.12.x before 1.12.9 does not ensure that a conversation exists,...
Linux Distros Unpatched Vulnerability : CVE-2016-9373
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DCERPC dissector could crash with a use-after-free, triggered by network traffic or a capture file. This was...
Linux Distros Unpatched Vulnerability : CVE-2016-2530
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dissctrslipaccessmsg function in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x before 1.12.10 and 2.0.x before 2.0.2 mishandles the...
Linux Distros Unpatched Vulnerability : CVE-2016-7178
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - epan/dissectors/packet-umtsfp.c in the UMTS FP dissector in Wireshark 2.x before 2.0.6 does not ensure that memory is allocated for certain data structures, whi...