rpm package
opensuse/wireshark&distro=openSUSE Leap 15.6
pkg:rpm/opensuse/wireshark&distro=openSUSE%20Leap%2015.6
Vulnerabilities (29)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-3201 | — | < 4.2.14-150600.18.38.1 | 4.2.14-150600.18.38.1 | Feb 25, 2026 | USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service | ||
| CVE-2026-0962 | — | < 4.2.14-150600.18.35.1 | 4.2.14-150600.18.35.1 | Jan 14, 2026 | SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service | ||
| CVE-2026-0960 | — | < 4.2.14-150600.18.35.1 | 4.2.14-150600.18.35.1 | Jan 14, 2026 | HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service | ||
| CVE-2026-0959 | — | < 4.2.14-150600.18.35.1 | 4.2.14-150600.18.35.1 | Jan 14, 2026 | IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service | ||
| CVE-2025-13946 | — | < 4.2.14-150600.18.32.1 | 4.2.14-150600.18.32.1 | Dec 3, 2025 | MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service | ||
| CVE-2025-13499 | — | < 4.2.14-150600.18.32.1 | 4.2.14-150600.18.32.1 | Nov 21, 2025 | Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service | ||
| CVE-2025-11626 | — | < 4.2.14-150600.18.29.1 | 4.2.14-150600.18.29.1 | Oct 10, 2025 | MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service | ||
| CVE-2025-9817 | — | < 4.2.13-150600.18.26.1 | 4.2.13-150600.18.26.1 | Sep 3, 2025 | SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service | ||
| CVE-2025-5601 | — | < 4.2.12-150600.18.23.1 | 4.2.12-150600.18.23.1 | Jun 4, 2025 | Column handling crashes in Wireshark 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows denial of service via packet injection or crafted capture file | ||
| CVE-2025-1492 | — | < 4.2.11-150600.18.20.1 | 4.2.11-150600.18.20.1 | Feb 20, 2025 | Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file | ||
| CVE-2024-11596 | — | < 4.2.9-150600.18.17.1 | 4.2.9-150600.18.17.1 | Nov 21, 2024 | ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file | ||
| CVE-2024-11595 | — | < 4.2.9-150600.18.17.1 | 4.2.9-150600.18.17.1 | Nov 21, 2024 | FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file | ||
| CVE-2024-9781 | — | < 4.2.8-150600.18.14.1 | 4.2.8-150600.18.14.1 | Oct 10, 2024 | AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file | ||
| CVE-2024-8645 | — | < 4.2.7-150600.18.11.1 | 4.2.7-150600.18.11.1 | Sep 10, 2024 | SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file | ||
| CVE-2024-8250 | — | < 4.2.7-150600.18.11.1 | 4.2.7-150600.18.11.1 | Aug 28, 2024 | NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file | ||
| CVE-2024-4855 | — | < 3.6.23-150600.18.3.1 | 3.6.23-150600.18.3.1 | May 14, 2024 | Use after free issue in editcap could cause denial of service via crafted capture file | ||
| CVE-2024-4854 | — | < 3.6.23-150600.18.3.1 | 3.6.23-150600.18.3.1 | May 14, 2024 | MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file | ||
| CVE-2024-4853 | — | < 3.6.23-150600.18.3.1 | 3.6.23-150600.18.3.1 | May 14, 2024 | Memory handling issue in editcap could cause denial of service via crafted capture file | ||
| CVE-2024-2955 | — | < 4.2.6-150600.18.6.1 | 4.2.6-150600.18.6.1 | Mar 26, 2024 | T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file | ||
| CVE-2023-6175 | — | < 4.2.6-150600.18.6.1 | 4.2.6-150600.18.6.1 | Mar 26, 2024 | NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file |
- CVE-2026-3201Feb 25, 2026affected < 4.2.14-150600.18.38.1fixed 4.2.14-150600.18.38.1
USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service
- CVE-2026-0962Jan 14, 2026affected < 4.2.14-150600.18.35.1fixed 4.2.14-150600.18.35.1
SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service
- CVE-2026-0960Jan 14, 2026affected < 4.2.14-150600.18.35.1fixed 4.2.14-150600.18.35.1
HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.2 allows denial of service
- CVE-2026-0959Jan 14, 2026affected < 4.2.14-150600.18.35.1fixed 4.2.14-150600.18.35.1
IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service
- CVE-2025-13946Dec 3, 2025affected < 4.2.14-150600.18.32.1fixed 4.2.14-150600.18.32.1
MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service
- CVE-2025-13499Nov 21, 2025affected < 4.2.14-150600.18.32.1fixed 4.2.14-150600.18.32.1
Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service
- CVE-2025-11626Oct 10, 2025affected < 4.2.14-150600.18.29.1fixed 4.2.14-150600.18.29.1
MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service
- CVE-2025-9817Sep 3, 2025affected < 4.2.13-150600.18.26.1fixed 4.2.13-150600.18.26.1
SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service
- CVE-2025-5601Jun 4, 2025affected < 4.2.12-150600.18.23.1fixed 4.2.12-150600.18.23.1
Column handling crashes in Wireshark 4.4.0 to 4.4.6 and 4.2.0 to 4.2.12 allows denial of service via packet injection or crafted capture file
- CVE-2025-1492Feb 20, 2025affected < 4.2.11-150600.18.20.1fixed 4.2.11-150600.18.20.1
Bundle Protocol and CBOR dissector crashes in Wireshark 4.4.0 to 4.4.3 and 4.2.0 to 4.2.10 allows denial of service via packet injection or crafted capture file
- CVE-2024-11596Nov 21, 2024affected < 4.2.9-150600.18.17.1fixed 4.2.9-150600.18.17.1
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
- CVE-2024-11595Nov 21, 2024affected < 4.2.9-150600.18.17.1fixed 4.2.9-150600.18.17.1
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
- CVE-2024-9781Oct 10, 2024affected < 4.2.8-150600.18.14.1fixed 4.2.8-150600.18.14.1
AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file
- CVE-2024-8645Sep 10, 2024affected < 4.2.7-150600.18.11.1fixed 4.2.7-150600.18.11.1
SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file
- CVE-2024-8250Aug 28, 2024affected < 4.2.7-150600.18.11.1fixed 4.2.7-150600.18.11.1
NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file
- CVE-2024-4855May 14, 2024affected < 3.6.23-150600.18.3.1fixed 3.6.23-150600.18.3.1
Use after free issue in editcap could cause denial of service via crafted capture file
- CVE-2024-4854May 14, 2024affected < 3.6.23-150600.18.3.1fixed 3.6.23-150600.18.3.1
MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file
- CVE-2024-4853May 14, 2024affected < 3.6.23-150600.18.3.1fixed 3.6.23-150600.18.3.1
Memory handling issue in editcap could cause denial of service via crafted capture file
- CVE-2024-2955Mar 26, 2024affected < 4.2.6-150600.18.6.1fixed 4.2.6-150600.18.6.1
T.38 dissector crash in Wireshark 4.2.0 to 4.0.3 and 4.0.0 to 4.0.13 allows denial of service via packet injection or crafted capture file
- CVE-2023-6175Mar 26, 2024affected < 4.2.6-150600.18.6.1fixed 4.2.6-150600.18.6.1
NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file
Page 1 of 2