Explore top 10 tips to secure your open-source projects now. Read More
×
Wireshark could be made to crash if it received specially crafted network
traffic or input files.
Software Description:
- wireshark: network traffic analyzer
Details:
It was discovered that Wireshark improperly handled certain input. A remote or
local attacker could cause Wireshark to crash by injecting malformed packets
onto the wire or convincing someone to read a malformed packet trace file.
The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10: libwireshark-data 2.6.8-1~ubuntu18.10.0 libwireshark11 2.6.8-1~ubuntu18.10.0 libwiretap8 2.6.8-1~ubuntu18.10.0 libwscodecs2 2.6.8-1~ubuntu18.10.0 libwsutil9 2.6.8-1~ubuntu18.10.0 tshark 2.6.8-1~ubuntu18.10.0 wireshark 2.6.8-1~ubuntu18.10.0 wireshark-common 2.6.8-1~ubuntu18.10.0 wireshark-gtk 2.6.8-1~ubuntu18.10.0 wireshark-qt 2.6.8-1~ubuntu18.10.0 Ubuntu 18.04 LTS: libwireshark-data 2.6.8-1~ubuntu18.04.0 libwireshark11 2.6.8-1~ubuntu18.04.0 libwiretap8 2.6.8-1~ubuntu18.04.0 libwscodecs2 2.6.8-1~ubuntu18.04.0 libwsutil9 2.6.8-1~ubuntu18.04.0 tshark 2.6.8-1~ubuntu18.04.0 wireshark 2.6.8-1~ubuntu18.04.0 wireshark-common 2.6.8-1~ubuntu18.04.0 wireshark-gtk 2.6.8-1~ubuntu18.04.0 wireshark-qt 2.6.8-1~ubuntu18.04.0 Ubuntu 16.04 LTS: libwireshark-data 2.6.8-1~ubuntu16.04.0 libwireshark11 2.6.8-1~ubuntu16.04.0 libwiretap8 2.6.8-1~ubuntu16.04.0 libwscodecs2 2.6.8-1~ubuntu16.04.0 libwsutil9 2.6.8-1~ubuntu16.04.0 tshark 2.6.8-1~ubuntu16.04.0 wireshark 2.6.8-1~ubuntu16.04.0 wireshark-common 2.6.8-1~ubuntu16.04.0 wireshark-gtk 2.6.8-1~ubuntu16.04.0 wireshark-qt 2.6.8-1~ubuntu16.04.0 In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-3986-1
CVE-2019-10894, CVE-2019-10895, CVE-2019-10896, CVE-2019-10899,
CVE-2019-10901, CVE-2019-10903, CVE-2019-9208, CVE-2019-9209,
CVE-2019-9214
Get the latest Linux and open source security news straight to your inbox.