Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Ubuntu 20.04 LTS USN-6262-1 Critical: Wireshark Denial of Service

ubuntu
Calendar Grey July 31, 2023
Dist Ubuntu Esm H88
Numerous vulnerabilities addressed in Wireshark for Ubuntu, impacting various LTS iterations, enhancing reliability and protection.
Several security issues were fixed in Wireshark.

Summary

Several security issues were fixed in Wireshark.

Software Description:

- wireshark: network traffic analyzer - meta-package

Details:

It was discovered that Wireshark did not properly handle certain

NFS packages when certain configuration options were enabled.

An attacker could possibly use this issue to cause

Wireshark to crash, resulting in a denial of service. (CVE-2020-13164)

It was discovered that Wireshark did not properly handle certain GVCP

packages. An attacker could possibly use this issue to cause

Wireshark to crash, resulting in a denial of service. This issue only

affected Ubuntu 20.04 LTS. (CVE-2020-15466)

It was discovered that Wireshark did not properly handle certain

Kafka packages. An attacker could possibly use this issue to cause

Wireshark to crash, resulting in a denial of service. This issue only

affected Ubuntu 20.04 LTS. (CVE-2020-17498)

It was discovered that Wireshark did not properly handle certain TCP

packages containing an i...

Read the Full Advisory

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS (Available with Ubuntu Pro):
   libwireshark13                  3.2.3-1ubuntu0.1~esm1
   tshark                          3.2.3-1ubuntu0.1~esm1
   wireshark                       3.2.3-1ubuntu0.1~esm1
   wireshark-common                3.2.3-1ubuntu0.1~esm1
   wireshark-gtk                   3.2.3-1ubuntu0.1~esm1
   wireshark-qt                    3.2.3-1ubuntu0.1~esm1

Ubuntu 18.04 LTS (Available with Ubuntu Pro):
   libwireshark11                  2.6.10-1~ubuntu18.04.0+esm1
   tshark                          2.6.10-1~ubuntu18.04.0+esm1
   wireshark                       2.6.10-1~ubuntu18.04.0+esm1
   wireshark-common                2.6.10-1~ubuntu18.04.0+esm1
   wireshark-gtk                   2.6.10-1~ubuntu18.04.0+esm1
   wireshark-qt                    2.6.10-1~ubuntu18.04.0+esm1

Ubuntu 16.04 LTS (Available with Ubuntu Pro):
   libwireshark11                  2.6.10-1~ubuntu16.04.0+esm1
   tshark                          2.6.10-1~ubuntu16.04.0+esm1
   wireshark                       2.6.10-1~ubuntu16.04.0+esm1
   wireshark-common                2.6.10-1~ubuntu16.04.0+esm1
   wireshark-gtk                   2.6.10-1~ubuntu16.04.0+esm1
   wireshark-qt                    2.6.10-1~ubuntu16.04.0+esm1

Ubuntu 14.04 LTS (Available with Ubuntu Pro):
   libwireshark11                  2.6.10-1~ubuntu14.04.0~esm2
   tshark                          2.6.10-1~ubuntu14.04.0~esm2
   wireshark                       2.6.10-1~ubuntu14.04.0~esm2
   wireshark-common                2.6.10-1~ubuntu14.04.0~esm2
   wireshark-gtk                   2.6.10-1~ubuntu14.04.0~esm2
   wireshark-qt                    2.6.10-1~ubuntu14.04.0~esm2

In general, a standard system update will make all the necessary changes.

References

  https://ubuntu.com/security/notices/USN-6262-1

  CVE-2020-13164, CVE-2020-15466, CVE-2020-17498, CVE-2020-25862,

  CVE-2020-25863

Severity
critical
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-6262-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here