openSUSE-SU-2020:1878

openSUSE-SU-2020:1882

https://gitlab.com/wireshark/wireshark/-/commit/4a948427100b6c109f4ec7b4361f0d2aec5e5c3f

https://gitlab.com/wireshark/wireshark/-/issues/16866

FEDORA-2020-1bf4b97c16

FEDORA-2020-1b390bec14

FEDORA-2020-9bda6ae1cd

https://www.oracle.com/security-alerts/cpujan2021.html

https://www.wireshark.org/security/wnpa-sec-2020-13.html

This update for wireshark fixes the following issues :

Update to wireshark 3.2.7 :

  - CVE-2020-25863: MIME Multipart dissector crash     (bsc#1176908)

  - CVE-2020-25862: TCP dissector crash (bsc#1176909)

  - CVE-2020-25866: BLIP dissector crash (bsc#1176910)

  - CVE-2020-17498: Kafka dissector crash (bsc#1175204)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for wireshark fixes the following issues :

  - Update to wireshark 3.2.7 :

  - CVE-2020-25863: MIME Multipart dissector crash     (bsc#1176908)

  - CVE-2020-25862: TCP dissector crash (bsc#1176909)

  - CVE-2020-25866: BLIP dissector crash (bsc#1176910)

  - CVE-2020-17498: Kafka dissector crash (bsc#1175204)

This update was imported from the SUSE:SLE-15:Update update project.

New version 3.2.7 Security fix for CVE-2020-25862, CVE-2020-25863, CVE-2020-25866

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The version of Wireshark installed on the remote Windows host is prior to 3.0.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.0.14 advisory.

  - The MIME Multipart dissector could crash. It may be possible to make Wireshark crash by injecting a     malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
    (CVE-2020-25863)

  - The TCP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25862)

  - The BLIP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25866)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.0.14. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.0.14 advisory.

  - The MIME Multipart dissector could crash. It may be possible to make Wireshark crash by injecting a     malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
    (CVE-2020-25863)

  - The TCP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25862)

  - The BLIP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25866)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote Windows host is prior to 3.2.7. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.2.7 advisory.

  - The MIME Multipart dissector could crash. It may be possible to make Wireshark crash by injecting a     malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
    (CVE-2020-25863)

  - The TCP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25862)

  - The BLIP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25866)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 3.2.7. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-3.2.7 advisory.

  - The MIME Multipart dissector could crash. It may be possible to make Wireshark crash by injecting a     malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
    (CVE-2020-25863)

  - The TCP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25862)

  - The BLIP dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet     onto the wire or by convincing someone to read a malformed packet trace file. (CVE-2020-25866)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Severity
143863	SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2020:3166-1)	Nessus	SuSE Local Security Checks	high
142838	openSUSE Security Update : wireshark (openSUSE-2020-1878)	Nessus	SuSE Local Security Checks	high
142829	openSUSE Security Update : wireshark (openSUSE-2020-1882)	Nessus	SuSE Local Security Checks	high
141869	Fedora 33 : 1:wireshark (2020-9bda6ae1cd)	Nessus	Fedora Local Security Checks	high
141522	Fedora 31 : 1:wireshark (2020-1b390bec14)	Nessus	Fedora Local Security Checks	high
141510	Fedora 32 : 1:wireshark (2020-1bf4b97c16)	Nessus	Fedora Local Security Checks	high
140775	Wireshark 3.0.x < 3.0.14 Multiple Vulnerabilities	Nessus	Windows	high
140774	Wireshark 3.0.x < 3.0.14 Multiple Vulnerabilities (macOS)	Nessus	MacOS X Local Security Checks	high
140757	Wireshark 3.2.x < 3.2.7 Multiple Vulnerabilities	Nessus	Windows	high
140756	Wireshark 3.2.x < 3.2.7 Multiple Vulnerabilities (macOS)	Nessus	MacOS X Local Security Checks	high

CVE-2020-25866

high

New! CVE Severity Now Using CVSS v3

Description

References

Details

Risk Information

CVSS v2

CVSS v3

Vulnerable Software

Configuration 1

Tenable Plugins

high

high

high

high

high

high

high

high

high

high