Debian Wireshark vulnerabilities

CVE-2021-39922 [HIGH] CVE-2021-39922: wireshark - Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to... Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.0-1) bullseye: resolved (fixed in 3.4.10-0+deb11u1) forky: resolved (fixed in 3.6.0-1) sid: resolved (fixed in 3.6.0-1) trixie: resolved (fixed in 3.6.0-1)

CVE-2021-4184 [HIGH] CVE-2021-4184: wireshark - Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.... Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.2-1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 3.6.2-1) sid: resolved (fixed in 3.6.2-1) trixie: resolved (fixed in 3.6.2-1)

CVE-2021-39925 [HIGH] CVE-2021-39925: wireshark - Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3... Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.0-1) bullseye: resolved (fixed in 3.4.10-0+deb11u1) forky: resolved (fixed in 3.6.0-1) sid: resolved (fixed in 3.6.0-1) trixie: resolved (fixed in 3.6.0-1)

CVE-2021-39929 [HIGH] CVE-2021-39929: wireshark - Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.... Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.0-1) bullseye: resolved (fixed in 3.4.10-0+deb11u1) forky: resolved (fixed in 3.6.0-1) sid: resolved (fixed in 3.6.0-1) trixie: resolved (fixed in 3

CVE-2021-39921 [HIGH] CVE-2021-39921: wireshark - NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3... NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.0-1) bullseye: resolved (fixed in 3.4.10-0+deb11u1) forky: resolved (fixed in 3.6.0-1) sid: resolved (fixed in 3.6.0-1) trixie: resolved (fixed in 3.6.0-1)

CVE-2021-4181 [HIGH] CVE-2021-4181: wireshark - Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allow... Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.2-1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 3.6.2-1) sid: resolved (fixed in 3.6.2-1) trixie: resolved (fixed in 3.6.2-1)

CVE-2021-4190 [HIGH] CVE-2021-4190: wireshark - Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service vi... Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.2-1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 3.6.2-1) sid: resolved (fixed in 3.6.2-1) trixie: resolved (fixed in 3.6.2-1)

CVE-2021-39923 [HIGH] CVE-2021-39923: wireshark - Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17... Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.0-1) bullseye: resolved (fixed in 3.4.10-0+deb11u1) forky: resolved (fixed in 3.6.0-1) sid: resolved (fixed in 3.6.0-1) trixie: resolved (fixed in 3.6.0-1)

CVE-2021-39920 [HIGH] CVE-2021-39920: wireshark - NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allow... NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.0-1) bullseye: resolved (fixed in 3.4.10-0+deb11u1) forky: resolved (fixed in 3.6.0-1) sid: resolved (fixed in 3.6.0-1) trixie: resolved (fixed in 3.6.0-1)

CVE-2021-22191 [MEDIUM] CVE-2021-22191: wireshark - Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allo... Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via via packet injection or crafted capture file. Scope: local bookworm: resolved (fixed in 3.4.4-1) bullseye: resolved (fixed in 3.4.4-1) forky: resolved (fixed in 3.4.4-1) sid: resolved (fixed in 3.4.4-1) trixie: resolved (fixed in 3.4.4-1)

CVE-2021-22207 [MEDIUM] CVE-2021-22207: wireshark - Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and... Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.4.7-1) bullseye: resolved (fixed in 3.4.10-0+deb11u1) forky: resolved (fixed in 3.4.7-1) sid: resolved (fixed in 3.4.7-1) trixie: resolved (fixed in 3.4.

CVE-2021-4186 [MEDIUM] CVE-2021-4186: wireshark - Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of ser... Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.6.0-1) bullseye: resolved (fixed in 3.4.16-0+deb11u1) forky: resolved (fixed in 3.6.0-1) sid: resolved (fixed in 3.6.0-1) trixie: resolved (fixed in 3.6.0-1)

CVE-2021-4183 [MEDIUM] CVE-2021-4183: wireshark - Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via ... Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of service via crafted capture file Scope: local bookworm: resolved (fixed in 3.6.2-1) bullseye: resolved forky: resolved (fixed in 3.6.2-1) sid: resolved (fixed in 3.6.2-1) trixie: resolved (fixed in 3.6.2-1)

CVE-2021-22173 [LOW] CVE-2021-22173: wireshark - Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of se... Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.4.3-1) bullseye: resolved (fixed in 3.4.3-1) forky: resolved (fixed in 3.4.3-1) sid: resolved (fixed in 3.4.3-1) trixie: resolved (fixed in 3.4.3-1)

CVE-2021-22174 [LOW] CVE-2021-22174: wireshark - Crash in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service ... Crash in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file Scope: local bookworm: resolved (fixed in 3.4.3-1) bullseye: resolved (fixed in 3.4.3-1) forky: resolved (fixed in 3.4.3-1) sid: resolved (fixed in 3.4.3-1) trixie: resolved (fixed in 3.4.3-1)

CVE-2020-9429 [HIGH] CVE-2020-9429: wireshark - In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addre... In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addressed in epan/dissectors/packet-wireguard.c by handling the situation where a certain data structure intentionally has a NULL value. Scope: local bookworm: resolved (fixed in 3.2.2-1) bullseye: resolved (fixed in 3.2.2-1) forky: resolved (fixed in 3.2.2-1) sid: resolved (fixed in 3.2.2-1)

CVE-2020-28030 [HIGH] CVE-2020-28030: wireshark - In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed... In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement. Scope: local bookworm: resolved (fixed in 3.2.8-0.1) bullseye: resolved (fixed in 3.2.8-0.1) forky: resolved (fixed in 3.2.8-0.1) sid: resolved (fixed in 3.2.8-0.1) trixie: resolved (fixed in 3.2

CVE-2020-7044 [HIGH] CVE-2020-7044: wireshark - In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addre... In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >= and <= to resolve off-by-one errors. Scope: local bookworm: resolved (fixed in 3.2.1-1) bullseye: resolved (fixed in 3.2.1-1) forky: resolved (fixed in 3.2.1-1) sid: resolved (fixed in 3.2.1-1) trixie: resolved (fixed in 3.2.1-1)

CVE-2020-26575 [HIGH] CVE-2020-26575: wireshark - In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector co... In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop. This was addressed in epan/dissectors/packet-fbzero.c by correcting the implementation of offset advancement. Scope: local bookworm: resolved (fixed in 3.2.8-0.1) bullseye: resolved (fixed in 3.2.8-0.1) forky: resolved (fixed in 3.2.8-0.1) sid: resolved (fix

CVE-2020-25862 [HIGH] CVE-2020-25862: wireshark - In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP disse... In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by changing the handling of the invalid 0xFFFF checksum. Scope: local bookworm: resolved (fixed in 3.2.7-1) bullseye: resolved (fixed in 3.2.7-1) forky: resolved (fixed in 3.2.7-1) sid: resolved (fixed in 3.2.7-1) tri