Download
| Alert*
oval:org.secpod.oval:def:89050484
This update for wireshark fixes the following issues: - Update to wireshark 3.2.7: * CVE-2020-25863: MIME Multipart dissector crash * CVE-2020-25862: TCP dissector crash * CVE-2020-25866: BLIP dissector crash * CVE-2020-17498: Kafka dissector crash oval:org.secpod.oval:def:65118 The host is installed with Wireshark 3.2.0 through 3.2.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a malformed packet trace file. Successful exploitation allows attackers to make Wireshark crash. oval:org.secpod.oval:def:65119 The host is missing a security update according to Wireshark Advisory. The update is required to fix a denial-of-service vulnerability. A flaw is present in the application, which fails to properly handle a malformed packet trace file. Successful exploitation allows attackers to make Wireshark crash ... oval:org.secpod.oval:def:118629 Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. It has many powerful features including a rich ... oval:org.secpod.oval:def:95034 wireshark: network traffic analyzer - meta-package Several security issues were fixed in Wireshark. oval:org.secpod.oval:def:118630 Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. It has many powerful features including a rich ... oval:org.secpod.oval:def:1801925 It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. oval:org.secpod.oval:def:65120 The host is installed with Wireshark 3.2.0 through 3.2.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a malformed packet trace file. Successful exploitation allows attackers to make Wireshark crash. oval:org.secpod.oval:def:91402 Solaris 11 - (CVE-2020-15466) oval:org.secpod.oval:def:708473 wireshark: network traffic analyzer - meta-package Several security issues were fixed in Wireshark. oval:org.secpod.oval:def:2004210 In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. This was addressed in epan/dissectors/packet-kafka.c by avoiding a double free during LZ4 decompression. oval:org.secpod.oval:def:65121 The host is missing a security update according to Wireshark Advisory. The update is required to fix a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a malformed packet trace file. Successful exploitation allows attackers to make Wireshark crash ... |