rpm package
suse/wireshark&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP1
pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1
Vulnerabilities (68)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-28030 | — | < 3.2.8-3.44.1 | 3.2.8-3.44.1 | Oct 30, 2020 | In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement. | ||
| CVE-2020-26575 | — | < 3.2.8-3.44.1 | 3.2.8-3.44.1 | Oct 6, 2020 | In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop. This was addressed in epan/dissectors/packet-fbzero.c by correcting the implementation of offset advancement. | ||
| CVE-2020-25863 | — | < 3.2.7-3.41.1 | 3.2.7-3.41.1 | Oct 6, 2020 | In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts. | ||
| CVE-2020-25866 | — | < 3.2.7-3.41.1 | 3.2.7-3.41.1 | Oct 6, 2020 | In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer dereference because a buffer was sized for compressed (not uncompressed) messages. This was addressed in epan/dissectors/packet-blip.c by allowing reasonable compression ratios and rej | ||
| CVE-2020-25862 | — | < 3.2.7-3.41.1 | 3.2.7-3.41.1 | Oct 6, 2020 | In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by changing the handling of the invalid 0xFFFF checksum. | ||
| CVE-2020-17498 | — | < 3.2.7-3.41.1 | 3.2.7-3.41.1 | Aug 13, 2020 | In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. This was addressed in epan/dissectors/packet-kafka.c by avoiding a double free during LZ4 decompression. | ||
| CVE-2020-15466 | — | < 3.2.5-3.38.1 | 3.2.5-3.38.1 | Jul 5, 2020 | In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset increases in all situations. | ||
| CVE-2020-13164 | — | < 3.2.5-3.38.1 | 3.2.5-3.38.1 | May 19, 2020 | In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a cycle in the directory graph on a filesystem. | ||
| CVE-2020-11647 | — | < 3.2.5-3.38.1 | 3.2.5-3.38.1 | Apr 10, 2020 | In Wireshark 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the BACapp dissector could crash. This was addressed in epan/dissectors/packet-bacapp.c by limiting the amount of recursion. | ||
| CVE-2020-9428 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Feb 27, 2020 | In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the EAP dissector could crash. This was addressed in epan/dissectors/packet-eap.c by using more careful sscanf parsing. | ||
| CVE-2020-9429 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Feb 27, 2020 | In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addressed in epan/dissectors/packet-wireguard.c by handling the situation where a certain data structure intentionally has a NULL value. | ||
| CVE-2020-9430 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Feb 27, 2020 | In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the WiMax DLMAP dissector could crash. This was addressed in plugins/epan/wimax/msg_dlmap.c by validating a length field. | ||
| CVE-2020-9431 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Feb 27, 2020 | In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could leak memory. This was addressed in epan/dissectors/packet-lte-rrc.c by adjusting certain append operations. | ||
| CVE-2020-7044 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Jan 16, 2020 | In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >= and <= to resolve off-by-one errors. | ||
| CVE-2019-19553 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Dec 5, 2019 | In Wireshark 3.0.0 to 3.0.6 and 2.6.0 to 2.6.12, the CMS dissector could crash. This was addressed in epan/dissectors/asn1/cms/packet-cms-template.c by ensuring that an object identifier is set to NULL after a ContentInfo dissection. | ||
| CVE-2019-16319 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Sep 15, 2019 | In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugins/epan/gryphon/packet-gryphon.c by checking for a message length of zero. | ||
| CVE-2019-13619 | — | < 2.4.16-3.31.1 | 2.4.16-3.31.1 | Jul 17, 2019 | In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer increments. | ||
| CVE-2019-10903 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Apr 9, 2019 | In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was addressed in epan/dissectors/packet-dcerpc-spoolss.c by adding a boundary check. | ||
| CVE-2019-10902 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Apr 9, 2019 | In Wireshark 3.0.0, the TSDNS dissector could crash. This was addressed in epan/dissectors/packet-tsdns.c by splitting strings safely. | ||
| CVE-2019-10901 | — | < 3.2.2-3.35.2 | 3.2.2-3.35.2 | Apr 9, 2019 | In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly. |
- CVE-2020-28030Oct 30, 2020affected < 3.2.8-3.44.1fixed 3.2.8-3.44.1
In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement.
- CVE-2020-26575Oct 6, 2020affected < 3.2.8-3.44.1fixed 3.2.8-3.44.1
In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop. This was addressed in epan/dissectors/packet-fbzero.c by correcting the implementation of offset advancement.
- CVE-2020-25863Oct 6, 2020affected < 3.2.7-3.41.1fixed 3.2.7-3.41.1
In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts.
- CVE-2020-25866Oct 6, 2020affected < 3.2.7-3.41.1fixed 3.2.7-3.41.1
In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer dereference because a buffer was sized for compressed (not uncompressed) messages. This was addressed in epan/dissectors/packet-blip.c by allowing reasonable compression ratios and rej
- CVE-2020-25862Oct 6, 2020affected < 3.2.7-3.41.1fixed 3.2.7-3.41.1
In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by changing the handling of the invalid 0xFFFF checksum.
- CVE-2020-17498Aug 13, 2020affected < 3.2.7-3.41.1fixed 3.2.7-3.41.1
In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. This was addressed in epan/dissectors/packet-kafka.c by avoiding a double free during LZ4 decompression.
- CVE-2020-15466Jul 5, 2020affected < 3.2.5-3.38.1fixed 3.2.5-3.38.1
In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset increases in all situations.
- CVE-2020-13164May 19, 2020affected < 3.2.5-3.38.1fixed 3.2.5-3.38.1
In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a cycle in the directory graph on a filesystem.
- CVE-2020-11647Apr 10, 2020affected < 3.2.5-3.38.1fixed 3.2.5-3.38.1
In Wireshark 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the BACapp dissector could crash. This was addressed in epan/dissectors/packet-bacapp.c by limiting the amount of recursion.
- CVE-2020-9428Feb 27, 2020affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the EAP dissector could crash. This was addressed in epan/dissectors/packet-eap.c by using more careful sscanf parsing.
- CVE-2020-9429Feb 27, 2020affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addressed in epan/dissectors/packet-wireguard.c by handling the situation where a certain data structure intentionally has a NULL value.
- CVE-2020-9430Feb 27, 2020affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the WiMax DLMAP dissector could crash. This was addressed in plugins/epan/wimax/msg_dlmap.c by validating a length field.
- CVE-2020-9431Feb 27, 2020affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could leak memory. This was addressed in epan/dissectors/packet-lte-rrc.c by adjusting certain append operations.
- CVE-2020-7044Jan 16, 2020affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >= and <= to resolve off-by-one errors.
- CVE-2019-19553Dec 5, 2019affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 3.0.0 to 3.0.6 and 2.6.0 to 2.6.12, the CMS dissector could crash. This was addressed in epan/dissectors/asn1/cms/packet-cms-template.c by ensuring that an object identifier is set to NULL after a ContentInfo dissection.
- CVE-2019-16319Sep 15, 2019affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugins/epan/gryphon/packet-gryphon.c by checking for a message length of zero.
- CVE-2019-13619Jul 17, 2019affected < 2.4.16-3.31.1fixed 2.4.16-3.31.1
In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer increments.
- CVE-2019-10903Apr 9, 2019affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was addressed in epan/dissectors/packet-dcerpc-spoolss.c by adding a boundary check.
- CVE-2019-10902Apr 9, 2019affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 3.0.0, the TSDNS dissector could crash. This was addressed in epan/dissectors/packet-tsdns.c by splitting strings safely.
- CVE-2019-10901Apr 9, 2019affected < 3.2.2-3.35.2fixed 3.2.2-3.35.2
In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly.
Page 1 of 4