rpm package

suse/wireshark&distro=SUSE Manager Proxy 4.0

pkg:rpm/suse/wireshark&distro=SUSE%20Manager%20Proxy%204.0

Vulnerabilities (9)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2021-22207	—	< 3.4.5-3.53.1	3.4.5-3.53.1	Apr 23, 2021	Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12 allows denial of service via packet injection or crafted capture file
CVE-2021-22191	—	< 3.4.5-3.53.1	3.4.5-3.53.1	Mar 15, 2021	Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via via packet injection or crafted capture file.
CVE-2021-22173	—	< 3.4.5-3.53.1	3.4.5-3.53.1	Feb 17, 2021	Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file
CVE-2021-22174	—	< 3.4.5-3.53.1	3.4.5-3.53.1	Feb 17, 2021	Crash in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file
CVE-2020-26422	—	< 3.4.5-3.53.1	3.4.5-3.53.1	Dec 21, 2020	Buffer overflow in QUIC dissector in Wireshark 3.4.0 to 3.4.1 allows denial of service via packet injection or crafted capture file
CVE-2020-26418	—	< 3.4.5-3.53.1	3.4.5-3.53.1	Dec 11, 2020	Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.
CVE-2020-26421	—	< 3.4.5-3.53.1	3.4.5-3.53.1	Dec 11, 2020	Crash in USB HID protocol dissector and possibly other dissectors in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.
CVE-2020-26420	—	< 3.4.5-3.53.1	3.4.5-3.53.1	Dec 11, 2020	Memory leak in RTPS protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.
CVE-2020-26419	—	< 3.4.5-3.53.1	3.4.5-3.53.1	Dec 11, 2020	Memory leak in the dissection engine in Wireshark 3.4.0 allows denial of service via packet injection or crafted capture file.

CVE-2021-22207Apr 23, 2021
affected < 3.4.5-3.53.1fixed 3.4.5-3.53.1
Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12 allows denial of service via packet injection or crafted capture file
CVE-2021-22191Mar 15, 2021
affected < 3.4.5-3.53.1fixed 3.4.5-3.53.1
Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via via packet injection or crafted capture file.
CVE-2021-22173Feb 17, 2021
affected < 3.4.5-3.53.1fixed 3.4.5-3.53.1
Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file
CVE-2021-22174Feb 17, 2021
affected < 3.4.5-3.53.1fixed 3.4.5-3.53.1
Crash in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file
CVE-2020-26422Dec 21, 2020
affected < 3.4.5-3.53.1fixed 3.4.5-3.53.1
Buffer overflow in QUIC dissector in Wireshark 3.4.0 to 3.4.1 allows denial of service via packet injection or crafted capture file
CVE-2020-26418Dec 11, 2020
affected < 3.4.5-3.53.1fixed 3.4.5-3.53.1
Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.
CVE-2020-26421Dec 11, 2020
affected < 3.4.5-3.53.1fixed 3.4.5-3.53.1
Crash in USB HID protocol dissector and possibly other dissectors in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.
CVE-2020-26420Dec 11, 2020
affected < 3.4.5-3.53.1fixed 3.4.5-3.53.1
Memory leak in RTPS protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.
CVE-2020-26419Dec 11, 2020
affected < 3.4.5-3.53.1fixed 3.4.5-3.53.1
Memory leak in the dissection engine in Wireshark 3.4.0 allows denial of service via packet injection or crafted capture file.