Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Mageia 9: MGASA-2024-0045 Moderate Advisory on Wireshark Issues

mageia
Calendar Grey February 20, 2024
Dist Mageia Esm H88
Recent updates in Mageia address crucial security vulnerabilities in Wireshark's dissecting modules, tackling issues like memory overflows and leaks.
The updated packages fix security vulnerabilities: RTPS dissector memory leak

Summary

The updated packages fix security vulnerabilities: RTPS dissector memory leak. (CVE-2023-5371) SSH dissector invalid read of memory blocks. (CVE-2023-6174) NetScreen File Parsing Heap-based Buffer Overflow. (CVE-2023-6175) GVCP dissector crash via packet injection or crafted capture file. (CVE-2024-0208)

References

- https://bugs.mageia.org/show_bug.cgi?id=32835

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/34DBP5P2RHQ7XUABPANYYMOGV5KS6VEP/

- https://www.cve.org/CVERecord?id=CVE-2023-5371

- https://www.cve.org/CVERecord?id=CVE-2023-6174

- https://www.cve.org/CVERecord?id=CVE-2023-6175

- https://www.cve.org/CVERecord?id=CVE-2024-0208

Topics%20covered

Topics Covered

security advisory security issue buffer overflow memory leak Wireshark Mageia dissector

Resolution

SRPMS

- 9/core/wireshark-4.0.12-1.mga9

Severity
important
Lowest
Low
Medium
High
Critical

Publication date: 20 Feb 2024
URL: https://advisories.mageia.org/MGASA-2024-0045.html
Type: security
CVE: CVE-2023-5371, CVE-2023-6174, CVE-2023-6175, CVE-2024-0208

Topics%20covered

Topics Covered

security advisory security issue buffer overflow memory leak Wireshark Mageia dissector

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here