Debian Wireshark vulnerabilities

CVE-2024-8250 [HIGH] CVE-2024-8250: wireshark - NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows d... NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.17-0+deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.4.0-1) sid: resolved (fixed in 4.4.0-1) trixie: resolved (fixed in 4.4.0-1)

CVE-2024-0209 [HIGH] CVE-2024-0209: wireshark - IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.... IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.17-0+deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.2.2-1) sid: resolved (fixed in 4.2.2-1) trixie: resolved (fixed in 4.2.2-1)

CVE-2024-8645 [MEDIUM] CVE-2024-8645: wireshark - SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows deni... SPRT dissector crash in Wireshark 4.2.0 to 4.0.5 and 4.0.0 to 4.0.15 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.17-0+deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.2.6-1) sid: resolved (fixed in 4.2.6-1) trixie: resolved (fixed in 4.2.6-1)

CVE-2024-4854 [MEDIUM] CVE-2024-4854: wireshark - MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0... MONGO and ZigBee TLV dissector infinite loops in Wireshark 4.2.0 to 4.2.4, 4.0.0 to 4.0.14, and 3.6.0 to 3.6.22 allow denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.17-0+deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.2.5-1) sid: resolved (fixed in 4.2.5-1) trixie: re

CVE-2024-24476 [HIGH] CVE-2024-24476: wireshark - A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause a ... A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the pan/addr_resolv.c, and ws_manuf_lookup_str(), size components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resol

CVE-2024-11595 [HIGH] CVE-2024-11595: wireshark - FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.... FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 4.4.2-1) sid: resolved (fixed in 4.4.2-1) trixie: resolved (fixed in 4.4.2-1)

CVE-2024-4853 [LOW] CVE-2024-4853: wireshark - Memory handling issue in editcap could cause denial of service via crafted captu... Memory handling issue in editcap could cause denial of service via crafted capture file Scope: local bookworm: resolved (fixed in 4.0.17-0+deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.2.5-1) sid: resolved (fixed in 4.2.5-1) trixie: resolved (fixed in 4.2.5-1)

CVE-2024-4855 [LOW] CVE-2024-4855: wireshark - Use after free issue in editcap could cause denial of service via crafted captur... Use after free issue in editcap could cause denial of service via crafted capture file Scope: local bookworm: resolved (fixed in 4.0.17-0+deb12u1) bullseye: open forky: resolved (fixed in 4.2.5-1) sid: resolved (fixed in 4.2.5-1) trixie: resolved (fixed in 4.2.5-1)

CVE-2024-0210 [HIGH] CVE-2024-0210: wireshark - Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packe... Zigbee TLV dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 4.2.2-1) sid: resolved (fixed in 4.2.2-1) trixie: resolved (fixed in 4.2.2-1)

CVE-2024-24478 [HIGH] CVE-2024-24478: wireshark - An issue in Wireshark before 4.2.0 allows a remote attacker to cause a denial of... An issue in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the packet-bgp.c, dissect_bgp_open(tvbuff_t*tvb, proto_tree*tree, packet_info*pinfo), optlen components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected. Scope: local bookworm: resolved bullseye: resolved forky: resolve

CVE-2024-0207 [HIGH] CVE-2024-0207: wireshark - HTTP3 dissector crash in Wireshark 4.2.0 allows denial of service via packet inj... HTTP3 dissector crash in Wireshark 4.2.0 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 4.2.2-1) sid: resolved (fixed in 4.2.2-1) trixie: resolved (fixed in 4.2.2-1)

CVE-2024-24479 [HIGH] CVE-2024-24479: wireshark - A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a ... A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and format_fractional_part_nsecs components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolv

CVE-2024-9780 [HIGH] CVE-2024-9780: wireshark - ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injec... ITS dissector crash in Wireshark 4.4.0 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved bullseye: resolved forky: resolved (fixed in 4.4.1-1) sid: resolved (fixed in 4.4.1-1) trixie: resolved (fixed in 4.4.1-1)

CVE-2023-6175 [HIGH] CVE-2023-6175: wireshark - NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 all... NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file Scope: local bookworm: resolved (fixed in 4.0.11-1~deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.0.11-1) sid: resolved (fixed in 4.0.11-1) trixie: resolved (fixed in 4.0.11-1)

CVE-2023-2857 [MEDIUM] CVE-2023-2857: wireshark - BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows den... BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Scope: local bookworm: resolved (fixed in 4.0.6-1~deb12u1) bullseye: resolved forky: resolved (fixed in 4.0.6-1) sid: resolved (fixed in 4.0.6-1) trixie: resolved (fixed in 4.0.6-1)

CVE-2023-2856 [MEDIUM] CVE-2023-2856: wireshark - VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13... VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via crafted capture file Scope: local bookworm: resolved (fixed in 4.0.6-1~deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.0.6-1) sid: resolved (fixed in 4.0.6-1) trixie: resolved (fixed in 4.0.6-1)

CVE-2023-0417 [MEDIUM] CVE-2023-0417: wireshark - Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10... Memory leak in the NFS dissector in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.3-1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.0.3-1) sid: resolved (fixed in 4.0.3-1) trixie: resolved (fixed in 4.0.3-1)

CVE-2023-2906 [MEDIUM] CVE-2023-2906: wireshark - Due to a failure in validating the length provided by an attacker-crafted CP2179... Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack. Scope: local bookworm: resolved (fixed in 4.0.11-1~deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.0.8-1) sid: resolved (fixed

CVE-2023-1994 [MEDIUM] CVE-2023-1994: wireshark - GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows den... GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.6-1~deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.0.6-1) sid: resolved (fixed in 4.0.6-1) trixie: resolved (fixed in 4.0.6-1)

CVE-2023-2952 [MEDIUM] CVE-2023-2952: wireshark - XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allo... XRA dissector infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 4.0.6-1~deb12u1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 4.0.6-1) sid: resolved (fixed in 4.0.6-1) trixie: resolved (fixed in 4.0.6-1)