- ------------------------------------------------------------------------- Debian LTS Advisory DLA-3443-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk June 03, 2023 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : wireshark Version : 2.6.20-0+deb10u7 CVE ID : CVE-2023-2856 CVE-2023-2858 CVE-2023-2879 CVE-2023-2952 Several vulnerabilities were fixed in the network traffic analyzer Wireshark. CVE-2023-2856 VMS TCPIPtrace file parser crash CVE-2023-2858 NetScaler file parser crash CVE-2023-2879 GDSDB infinite loop CVE-2023-2952 XRA dissector infinite loop For Debian 10 buster, these problems have been fixed in version 2.6.20-0+deb10u7. We recommend that you upgrade your wireshark packages. For the detailed security status of wireshark please refer to its security tracker page at: https://security-tracker.debian.org/tracker/wireshark Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS
Debian LTS: DLA-3443-1: wireshark security update
June 3, 2023
Several vulnerabilities were fixed in the network traffic analyzer Wireshark
Summary
CVE-2023-2856
VMS TCPIPtrace file parser crash
CVE-2023-2858
NetScaler file parser crash
CVE-2023-2879
GDSDB infinite loop
CVE-2023-2952
XRA dissector infinite loop
For Debian 10 buster, these problems have been fixed in version
2.6.20-0+deb10u7.
We recommend that you upgrade your wireshark packages.
For the detailed security status of wireshark please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/wireshark
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
Severity
Package : wireshark
Version : 2.6.20-0+deb10u7
CVE ID : CVE-2023-2856 CVE-2023-2858 CVE-2023-2879 CVE-2023-2952
News
HOWTOs
Features
About Us
Powered By
