Explore top 10 tips to secure your open-source projects now. Read More
×
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-20600 http://linux.oracle.com/errata/ELSA-2026-20600.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: x86_64: wireshark-4.4.2-10.0.1.el10_2.x86_64.rpm wireshark-cli-4.4.2-10.0.1.el10_2.x86_64.rpm wireshark-devel-4.4.2-10.0.1.el10_2.x86_64.rpm aarch64: wireshark-4.4.2-10.0.1.el10_2.aarch64.rpm wireshark-cli-4.4.2-10.0.1.el10_2.aarch64.rpm wireshark-devel-4.4.2-10.0.1.el10_2.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/wireshark-4.4.2-10.0.1.el10_2.src.rpm Related CVEs: CVE-2026-5405 CVE-2026-5656 Description of changes: [4.4.2-10.0.1] - Fix post script to not fail during initial installation [Orabug: 37565359] [1:4.4.2-10] - Resolves: RHEL-173221 - CVE-2026-5656 Improper Limitation of a Pathname to a Restricted Directory [1:4.4.2-9] - Resolves: RHEL-173218 - CVE-2026-5405 Heap-based Buffer Overflow [1:4.4.2-8] - Resolves: RHEL-152922 - CVE-2026-3203 Buffer Over-read [1:4.4.2-7] - Resolves: RHEL-152913 - CVE-2026-3201 Improperly Controlled Sequential Memory Allocation [1:4.4.2-6] - Resolves: RHEL-136919 - NULL Pointer Dereference in Wireshark (CVE-2025-9817) [1:4.4.2-5] - Resolves: RHEL-130427 - Access of Uninitialized Pointer in Wireshark _______________________________________________ El-errata mailing list
Moderate: wireshark security update. {"type": "TYPE_SECURITY", "shortCode": "RL", "name": "RLSA-2023:7015", "synopsis": "Moderate: wireshark security update", "severity": "SEVERITY_MODERATE", "topic": "An update is available for wireshark.\nThis update affects Rocky Linux 8.\nA Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list", "description": "The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network.\n\nSecurity Fix(es):\n\n* wireshark: RTPS dissector crash (CVE-2023-0666)\n\n* wireshark: VMS TCPIPtrace file parser crash (CVE-2023-2856)\n\n* wireshark: NetScaler file parser crash (CVE-2023-2858)\n\n* wireshark: XRA dissector infinite loop (CVE-2023-2952)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Rocky Linux 8.9 Release Notes linked from the References section.", "solution": null, "affectedProducts": ["Rocky Linux 8"], "fixes": [{"ticket": "2210824", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2210824", "description": ""}, {"ticket": "2210829", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2210829", "description": ""}, {"ticket": "2210832", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2210832", "description": ""}, {"ticket": "2211406", "sourceBy": "Red Hat", "sourceLink": "https://bugzilla.redhat.com/show_bug.cgi?id=2211406", "description": ""}], "cves": [{"name": "CVE-2023-0666", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0666", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "cvss3BaseScore": "6.5", "cwe": "CWE-122"}, {"name":"CVE-2023-2856", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2856", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "cvss3BaseScore": "6.5", "cwe": "CWE-121"}, {"name": "CVE-2023-2858", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2858", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "cvss3BaseScore": "6.5", "cwe": "CWE-122"}, {"name": "CVE-2023-2952", "sourceBy": "MITRE", "sourceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2952", "cvss3ScoringVector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "cvss3BaseScore": "6.5", "cwe": "CWE-835"}], "references": [], "publishedAt": "2026-06-25T12:01:05.792943Z", "rpms": {"Rocky Linux 8": {"nvras": ["wireshark-1:2.6.2-17.el8.aarch64.rpm", "wireshark-1:2.6.2-17.el8.src.rpm", "wireshark-1:2.6.2-17.el8.x86_64.rpm", "wireshark-cli-1:2.6.2-17.el8.aarch64.rpm", "wireshark-cli-1:2.6.2-17.el8.i686.rpm", "wireshark-cli-1:2.6.2-17.el8.x86_64.rpm", "wireshark-cli-debuginfo-1:2.6.2-17.el8.aarch64.rpm", "wireshark-cli-debuginfo-1:2.6.2-17.el8.i686.rpm", "wireshark-cli-debuginfo-1:2.6.2-17.el8.x86_64.rpm", "wireshark-debuginfo-1:2.6.2-17.el8.aarch64.rpm", "wireshark-debuginfo-1:2.6.2-17.el8.i686.rpm", "wireshark-debuginfo-1:2.6.2-17.el8.x86_64.rpm", "wireshark-debugsource-1:2.6.2-17.el8.aarch64.rpm", "wireshark-debugsource-1:2.6.2-17.el8.i686.rpm", "wireshark-debugsource-1:2.6.2-17.el8.x86_64.rpm", "wireshark-devel-1:2.6.2-17.el8.aarch64.rpm", "wireshark-devel-1:2.6.2-17.el8.i686.rpm", "wireshark-devel-1:2.6.2-17.el8.x86_64.rpm"]}}, "rebootSuggested": false, "buildReferences": []}. A moderate security update is available for wireshark on Rocky Linux. Important fixes address various crashes in the application.. wireshark update, rocky linux security, network analysis, security fixes. . Severity: moderate. LinuxSecurity.com Team
An update that solves two vulnerabilities can now be installed.. # Security update for wireshark Announcement ID: SUSE-SU-2026:2437-1 Release Date: 2026-06-17T14:44:46Z Rating: important References: * bsc#1263767 * bsc#1263809 Cross-References: * CVE-2026-5405 * CVE-2026-5656 CVSS scores: * CVE-2026-5405 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5405 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5656 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-5656 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: * openSUSE Leap 15.6 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP6 An update that solves two vulnerabilities can now be installed. ## Description: This update for wireshark fixes the following issues * CVE-2026-5405: RDP dissector crash (bsc#1263767). * CVE-2026-5656: Profile import crash and possible code execution (bsc#1263809). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-2437=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2437=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2437=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * wireshark-ui-qt-4.2.14-150600.18.41.1 * libwsutil15-debuginfo-4.2.14-150600.18.41.1 * libwiretap14-4.2.14-150600.18.41.1 * wireshark-ui-qt-debuginfo-4.2.14-150600.18.41.1 * libwireshark17-4.2.14-150600.18.41.1 *libwiretap14-debuginfo-4.2.14-150600.18.41.1 * libwireshark17-debuginfo-4.2.14-150600.18.41.1 * wireshark-debugsource-4.2.14-150600.18.41.1 * wireshark-devel-4.2.14-150600.18.41.1 * wireshark-debuginfo-4.2.14-150600.18.41.1 * wireshark-4.2.14-150600.18.41.1 * libwsutil15-4.2.14-150600.18.41.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * wireshark-ui-qt-4.2.14-150600.18.41.1 * libwiretap14-4.2.14-150600.18.41.1 * libwsutil15-debuginfo-4.2.14-150600.18.41.1 * wireshark-ui-qt-debuginfo-4.2.14-150600.18.41.1 * libwireshark17-4.2.14-150600.18.41.1 * libwiretap14-debuginfo-4.2.14-150600.18.41.1 * libwireshark17-debuginfo-4.2.14-150600.18.41.1 * wireshark-debugsource-4.2.14-150600.18.41.1 * wireshark-devel-4.2.14-150600.18.41.1 * wireshark-debuginfo-4.2.14-150600.18.41.1 * wireshark-4.2.14-150600.18.41.1 * libwsutil15-4.2.14-150600.18.41.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * wireshark-ui-qt-4.2.14-150600.18.41.1 * libwiretap14-4.2.14-150600.18.41.1 * libwsutil15-debuginfo-4.2.14-150600.18.41.1 * wireshark-ui-qt-debuginfo-4.2.14-150600.18.41.1 * libwireshark17-4.2.14-150600.18.41.1 * libwiretap14-debuginfo-4.2.14-150600.18.41.1 * libwireshark17-debuginfo-4.2.14-150600.18.41.1 * wireshark-debugsource-4.2.14-150600.18.41.1 * wireshark-devel-4.2.14-150600.18.41.1 * wireshark-debuginfo-4.2.14-150600.18.41.1 * wireshark-4.2.14-150600.18.41.1 * libwsutil15-4.2.14-150600.18.41.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5405.html * https://www.suse.com/security/cve/CVE-2026-5656.html * https://bugzilla.suse.com/show_bug.cgi?id=1263767 * https://bugzilla.suse.com/show_bug.cgi?id=1263809 . Two important issues fixed in wireshark affecting openSUSE. Install advised patches to ensure security compliance.. openSUSE security update, wireshark vulnerabilities, important patches, cybersecurity issues. .Severity: Important. LinuxSecurity.com Team
Security update. Publication date: 10 Jun 2026 URL: https://advisories.mageia.org/MGASA-2026-0184.html Type: security Affected Mageia releases: 9 CVE: CVE-2024-11596, CVE-2024-9781, CVE-2025-11626, CVE-2025-13499, CVE-2025-13945, CVE-2025-13946, CVE-2025-1492, CVE-2025-5601, CVE-2025-9817, CVE-2026-0960, CVE-2026-5405, CVE-2026-5653, CVE-2026-6529, CVE-2026-6530, CVE-2026-6867, CVE-2026-6868, CVE-2026-6869, CVE-2026-6870, CVE-2026-7376, CVE-2026-7378, CVE-2026-7379 Description: Multiple vulnerabilities have been discovered in Wireshark, a network protocol analyzer, which could result in denial of service or the execution of arbitrary code. This update fixes the reported issue. References: - https://bugs.mageia.org/show_bug.cgi?id=33641 - https://lists.opensuse.org/archives/list/
An update that solves 29 vulnerabilities can now be installed.. # Security update for wireshark Announcement ID: SUSE-SU-2026:2203-1 Release Date: 2026-06-01T10:03:24Z Rating: important References: * bsc#1263725 * bsc#1263726 * bsc#1263727 * bsc#1263728 * bsc#1263731 * bsc#1263732 * bsc#1263734 * bsc#1263736 * bsc#1263737 * bsc#1263739 * bsc#1263740 * bsc#1263742 * bsc#1263743 * bsc#1263744 * bsc#1263745 * bsc#1263746 * bsc#1263747 * bsc#1263750 * bsc#1263752 * bsc#1263753 * bsc#1263754 * bsc#1263756 * bsc#1263758 * bsc#1263759 * bsc#1263762 * bsc#1263765 * bsc#1263766 * bsc#1263767 * bsc#1263809 Cross-References: * CVE-2026-5401 * CVE-2026-5403 * CVE-2026-5404 * CVE-2026-5405 * CVE-2026-5406 * CVE-2026-5407 * CVE-2026-5408 * CVE-2026-5653 * CVE-2026-5656 * CVE-2026-5657 * CVE-2026-6519 * CVE-2026-6520 * CVE-2026-6521 * CVE-2026-6522 * CVE-2026-6523 * CVE-2026-6526 * CVE-2026-6527 * CVE-2026-6529 * CVE-2026-6530 * CVE-2026-6532 * CVE-2026-6534 * CVE-2026-6535 * CVE-2026-6538 * CVE-2026-6867 * CVE-2026-6868 * CVE-2026-6869 * CVE-2026-6870 * CVE-2026-7378 * CVE-2026-7379 CVSS scores: * CVE-2026-5401 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5401 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5403 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5404 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5405 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5405 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5406 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5406 ( NVD ): 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5407 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5407 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5408 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5408 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5653 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5653 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5653 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5656 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-5656 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5656 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5657 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5657 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5657 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6519 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6520 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6520 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6520 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6521 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6521 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6522 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6522 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6523 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6523 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6526 ( SUSE ): 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6526 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6527 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6527 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6529 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6529 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6530 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6530 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6532 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6532 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6534 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6534 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6535 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6535 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6538 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6538 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6867 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6867 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6868 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6868 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6868 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6869 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6870 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6870 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7378 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7378 ( NVD ): 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7378 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-7379 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7379 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-7379 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves 29 vulnerabilities can now be installed. ## Description: This update for wireshark fixes the following issues * CVE-2026-5401: AFP dissector crash (bsc#1263756). * CVE-2026-5403: SBC audio codec crash (bsc#1263765). * CVE-2026-5404: K12 RF5 file parser crash (bsc#1263766). * CVE-2026-5405: RDP dissector crash (bsc#1263767). * CVE-2026-5406: FC-SWILS dissector crash (bsc#1263754). * CVE-2026-5407: SMB2 dissector infinite loop (bsc#1263753). * CVE-2026-5408: BT-DHT dissector crash (bsc#1263752). * CVE-2026-5653: DCP-ETSI dissector crash (bsc#1263750). * CVE-2026-5656: Profile import crash and possible code execution (bsc#1263809). * CVE-2026-5657: iLBC audio codec crash (bsc#1263747). * CVE-2026-6519: MBIM protocol dissector infinite loop (bsc#1263746). * CVE-2026-6520: OpenFlow v6 protocol dissector infinite loop (bsc#1263745). * CVE-2026-6521: OpenFlow v5 protocol dissector infinite loops (bsc#1263744). *CVE-2026-6522: RPKI-Router protocol dissector infinite loop (bsc#1263743). * CVE-2026-6523: GNW protocol dissector infinite loop (bsc#1263742). * CVE-2026-6526: RTSP protocol dissector crash (bsc#1263740). * CVE-2026-6527: ASN.1 PER dissector crash (bsc#1263739). * CVE-2026-6529: iLBC audio codec crash (bsc#1263737). * CVE-2026-6530: DCP-ETSI protocol dissector crash (bsc#1263736). * CVE-2026-6532: Kismet protocol dissector crash (bsc#1263734). * CVE-2026-6534: USB HID dissector infinite loop (bsc#1263732). * CVE-2026-6535: Dissection engine zlib decompression crash (bsc#1263731). * CVE-2026-6538: BEEP dissector crash (bsc#1263728). * CVE-2026-6867: SMB2 protocol dissector crash (bsc#1263727). * CVE-2026-6868: HTTP protocol dissector crash (bsc#1263762). * CVE-2026-6869: WebSocket protocol dissector crash (bsc#1263726). * CVE-2026-6870: GSM RP protocol dissector crash (bsc#1263725). * CVE-2026-7378: Sharkd utility crash (bsc#1263759). * CVE-2026-7379: Sharkd utility memory leak (bsc#1263758). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2203=1 * SUSE Linux Enterprise Server 15 SP4 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-2203=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-2203=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-2203=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2203=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2026-2203=1 * SUSE Linux EnterpriseServer for SAP Applications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2203=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2203=1 ## Package List: * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise Server 15 SP4 LTSS (aarch64 ppc64le s390x x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 *libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 *libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * libwiretap12-debuginfo-3.6.24-150000.3.133.1 * wireshark-debuginfo-3.6.24-150000.3.133.1 * libwireshark15-3.6.24-150000.3.133.1 * wireshark-devel-3.6.24-150000.3.133.1 * wireshark-ui-qt-3.6.24-150000.3.133.1 * libwsutil13-3.6.24-150000.3.133.1 * wireshark-3.6.24-150000.3.133.1 * libwsutil13-debuginfo-3.6.24-150000.3.133.1 * wireshark-debugsource-3.6.24-150000.3.133.1 * libwireshark15-debuginfo-3.6.24-150000.3.133.1 * wireshark-ui-qt-debuginfo-3.6.24-150000.3.133.1 * libwiretap12-3.6.24-150000.3.133.1 ## References: * https://www.suse.com/security/cve/CVE-2026-5401.html * https://www.suse.com/security/cve/CVE-2026-5403.html * https://www.suse.com/security/cve/CVE-2026-5404.html * https://www.suse.com/security/cve/CVE-2026-5405.html * https://www.suse.com/security/cve/CVE-2026-5406.html * https://www.suse.com/security/cve/CVE-2026-5407.html * https://www.suse.com/security/cve/CVE-2026-5408.html * https://www.suse.com/security/cve/CVE-2026-5653.html * https://www.suse.com/security/cve/CVE-2026-5656.html * https://www.suse.com/security/cve/CVE-2026-5657.html * https://www.suse.com/security/cve/CVE-2026-6519.html * https://www.suse.com/security/cve/CVE-2026-6520.html *https://www.suse.com/security/cve/CVE-2026-6521.html * https://www.suse.com/security/cve/CVE-2026-6522.html * https://www.suse.com/security/cve/CVE-2026-6523.html * https://www.suse.com/security/cve/CVE-2026-6526.html * https://www.suse.com/security/cve/CVE-2026-6527.html * https://www.suse.com/security/cve/CVE-2026-6529.html * https://www.suse.com/security/cve/CVE-2026-6530.html * https://www.suse.com/security/cve/CVE-2026-6532.html * https://www.suse.com/security/cve/CVE-2026-6534.html * https://www.suse.com/security/cve/CVE-2026-6535.html * https://www.suse.com/security/cve/CVE-2026-6538.html * https://www.suse.com/security/cve/CVE-2026-6867.html * https://www.suse.com/security/cve/CVE-2026-6868.html * https://www.suse.com/security/cve/CVE-2026-6869.html * https://www.suse.com/security/cve/CVE-2026-6870.html * https://www.suse.com/security/cve/CVE-2026-7378.html * https://www.suse.com/security/cve/CVE-2026-7379.html * https://bugzilla.suse.com/show_bug.cgi?id=1263725 * https://bugzilla.suse.com/show_bug.cgi?id=1263726 * https://bugzilla.suse.com/show_bug.cgi?id=1263727 * https://bugzilla.suse.com/show_bug.cgi?id=1263728 * https://bugzilla.suse.com/show_bug.cgi?id=1263731 * https://bugzilla.suse.com/show_bug.cgi?id=1263732 * https://bugzilla.suse.com/show_bug.cgi?id=1263734 * https://bugzilla.suse.com/show_bug.cgi?id=1263736 * https://bugzilla.suse.com/show_bug.cgi?id=1263737 * https://bugzilla.suse.com/show_bug.cgi?id=1263739 * https://bugzilla.suse.com/show_bug.cgi?id=1263740 * https://bugzilla.suse.com/show_bug.cgi?id=1263742 * https://bugzilla.suse.com/show_bug.cgi?id=1263743 * https://bugzilla.suse.com/show_bug.cgi?id=1263744 * https://bugzilla.suse.com/show_bug.cgi?id=1263745 * https://bugzilla.suse.com/show_bug.cgi?id=1263746 * https://bugzilla.suse.com/show_bug.cgi?id=1263747 * https://bugzilla.suse.com/show_bug.cgi?id=1263750 * https://bugzilla.suse.com/show_bug.cgi?id=1263752 * https://bugzilla.suse.com/show_bug.cgi?id=1263753 * https://bugzilla.suse.com/show_bug.cgi?id=1263754 * https://bugzilla.suse.com/show_bug.cgi?id=1263756 * https://bugzilla.suse.com/show_bug.cgi?id=1263758 * https://bugzilla.suse.com/show_bug.cgi?id=1263759 * https://bugzilla.suse.com/show_bug.cgi?id=1263762 * https://bugzilla.suse.com/show_bug.cgi?id=1263765 * https://bugzilla.suse.com/show_bug.cgi?id=1263766 * https://bugzilla.suse.com/show_bug.cgi?id=1263767 * https://bugzilla.suse.com/show_bug.cgi?id=1263809 . SUSE has released an updated version of Wireshark to tackle 29 significant vulnerabilities, boosting overall system security and protection. wireshark security update, SUSE vulnerabilities, wireshark issues, important security patch. . Severity: Important. LinuxSecurity.com Team
An update that solves 33 vulnerabilities can now be installed.. # Security update for wireshark Announcement ID: SUSE-SU-2026:21559-1 Release Date: 2026-05-06T00:08:30Z Rating: important References: * bsc#1258907 * bsc#1258909 * bsc#1263726 * bsc#1263728 * bsc#1263729 * bsc#1263731 * bsc#1263732 * bsc#1263733 * bsc#1263734 * bsc#1263735 * bsc#1263736 * bsc#1263737 * bsc#1263739 * bsc#1263741 * bsc#1263742 * bsc#1263743 * bsc#1263744 * bsc#1263745 * bsc#1263746 * bsc#1263747 * bsc#1263749 * bsc#1263750 * bsc#1263751 * bsc#1263752 * bsc#1263753 * bsc#1263754 * bsc#1263756 * bsc#1263757 * bsc#1263762 * bsc#1263765 * bsc#1263766 * bsc#1263767 * bsc#1263809 Cross-References: * CVE-2026-3201 * CVE-2026-3203 * CVE-2026-5299 * CVE-2026-5401 * CVE-2026-5403 * CVE-2026-5404 * CVE-2026-5405 * CVE-2026-5406 * CVE-2026-5407 * CVE-2026-5408 * CVE-2026-5409 * CVE-2026-5653 * CVE-2026-5654 * CVE-2026-5656 * CVE-2026-5657 * CVE-2026-6519 * CVE-2026-6520 * CVE-2026-6521 * CVE-2026-6522 * CVE-2026-6523 * CVE-2026-6524 * CVE-2026-6527 * CVE-2026-6529 * CVE-2026-6530 * CVE-2026-6531 * CVE-2026-6532 * CVE-2026-6533 * CVE-2026-6534 * CVE-2026-6535 * CVE-2026-6537 * CVE-2026-6538 * CVE-2026-6868 * CVE-2026-6869 CVSS scores: * CVE-2026-3201 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-3201 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2026-3201 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3201 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-3203 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2026-3203 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2026-3203 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-3203 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H *CVE-2026-5299 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5299 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5401 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5401 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5403 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5403 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5404 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5404 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5404 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5405 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5405 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5406 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5406 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5407 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5407 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5408 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5408 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5409 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5409 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5653 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5653 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5653 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5654 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5654 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5654 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-5656 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2026-5656 ( NVD ): 7.8CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5656 ( NVD ): 7.0 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2026-5657 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5657 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-5657 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6519 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6519 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6519 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6520 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6520 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6520 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6521 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6521 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6522 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6522 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6523 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6523 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6524 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6524 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6527 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6527 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6529 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6529 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6530 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6530 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6531 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6531 ( NVD ): 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6532 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6532 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6533 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6533 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6534 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6534 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6535 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6535 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6537 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6537 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6538 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6538 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6868 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6868 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6868 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-6869 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-6869 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP applications 16.0 An update that solves 33 vulnerabilities can now be installed. ## Description: This update for wireshark fixes the following issues * CVE-2026-3201: missing limit checks in USB HID protocol dissector's `parse_report_descriptor` function can lead to memory exhaustion (bsc#1258907). * CVE-2026-3203: missing length checks in the RF4CE Profile protocol dissector can lead to illegal memory access and crash (bsc#1258909). * CVE-2026-5299: ICMPv6 dissector crash (bsc#1263757). * CVE-2026-5401: AFP dissector crash (bsc#1263756). *CVE-2026-5403: SBC audio codec crash (bsc#1263765). * CVE-2026-5404: K12 RF5 file parser crash (bsc#1263766). * CVE-2026-5405: RDP dissector crash (bsc#1263767). * CVE-2026-5406: FC-SWILS dissector crash (bsc#1263754). * CVE-2026-5407: SMB2 dissector infinite loop (bsc#1263753). * CVE-2026-5408: BT-DHT dissector crash (bsc#1263752). * CVE-2026-5409: Monero dissector crash (bsc#1263751). * CVE-2026-5653: DCP-ETSI dissector crash (bsc#1263750). * CVE-2026-5654: AMR-NB audio codec crash (bsc#1263749). * CVE-2026-5656: Profile import crash and possible code execution (bsc#1263809). * CVE-2026-5657: iLBC audio codec crash (bsc#1263747). * CVE-2026-6519: MBIM protocol dissector infinite loop (bsc#1263746). * CVE-2026-6520: OpenFlow v6 protocol dissector infinite loop (bsc#1263745). * CVE-2026-6521: OpenFlow v5 protocol dissector infinite loops (bsc#1263744). * CVE-2026-6522: RPKI-Router protocol dissector infinite loop (bsc#1263743). * CVE-2026-6523: GNW protocol dissector infinite loop (bsc#1263742). * CVE-2026-6524: MySQL protocol dissector crash (bsc#1263741). * CVE-2026-6527: ASN.1 PER dissector crash (bsc#1263739). * CVE-2026-6529: iLBC audio codec crash (bsc#1263737). * CVE-2026-6530: DCP-ETSI protocol dissector crash (bsc#1263736). * CVE-2026-6531: SANE protocol dissector infinite loop (bsc#1263735). * CVE-2026-6532: Kismet protocol dissector crash (bsc#1263734). * CVE-2026-6533: Dissection engine LZ77 decompression crash (bsc#1263733). * CVE-2026-6534: USB HID dissector infinite loop (bsc#1263732). * CVE-2026-6535: Dissection engine zlib decompression crash (bsc#1263731). * CVE-2026-6537: ZigBee dissector crash (bsc#1263729). * CVE-2026-6538: BEEP dissector crash (bsc#1263728). * CVE-2026-6868: HTTP protocol dissector crash (bsc#1263762). * CVE-2026-6869: WebSocket protocol dissector crash (bsc#1263726). Changes for wireshark: * Updated to 4.4.15 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methodslike YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server for SAP applications 16.0 zypper in -t patch SUSE-SLES-16.0-702=1 * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-702=1 ## Package List: * SUSE Linux Enterprise Server for SAP applications 16.0 (ppc64le x86_64) * libwsutil16-debuginfo-4.4.15-160000.1.1 * wireshark-debuginfo-4.4.15-160000.1.1 * libwiretap15-debuginfo-4.4.15-160000.1.1 * wireshark-debugsource-4.4.15-160000.1.1 * wireshark-ui-qt-4.4.15-160000.1.1 * libwireshark18-debuginfo-4.4.15-160000.1.1 * libwsutil16-4.4.15-160000.1.1 * libwireshark18-4.4.15-160000.1.1 * wireshark-ui-qt-debuginfo-4.4.15-160000.1.1 * wireshark-devel-4.4.15-160000.1.1 * libwiretap15-4.4.15-160000.1.1 * wireshark-4.4.15-160000.1.1 * SUSE Linux Enterprise Server 16.0 (aarch64 ppc64le s390x x86_64) * libwsutil16-debuginfo-4.4.15-160000.1.1 * wireshark-debuginfo-4.4.15-160000.1.1 * libwiretap15-debuginfo-4.4.15-160000.1.1 * wireshark-debugsource-4.4.15-160000.1.1 * wireshark-ui-qt-4.4.15-160000.1.1 * libwireshark18-debuginfo-4.4.15-160000.1.1 * libwsutil16-4.4.15-160000.1.1 * libwireshark18-4.4.15-160000.1.1 * wireshark-ui-qt-debuginfo-4.4.15-160000.1.1 * wireshark-devel-4.4.15-160000.1.1 * libwiretap15-4.4.15-160000.1.1 * wireshark-4.4.15-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2026-3201.html * https://www.suse.com/security/cve/CVE-2026-3203.html * https://www.suse.com/security/cve/CVE-2026-5299.html * https://www.suse.com/security/cve/CVE-2026-5401.html * https://www.suse.com/security/cve/CVE-2026-5403.html * https://www.suse.com/security/cve/CVE-2026-5404.html * https://www.suse.com/security/cve/CVE-2026-5405.html * https://www.suse.com/security/cve/CVE-2026-5406.html * https://www.suse.com/security/cve/CVE-2026-5407.html *https://www.suse.com/security/cve/CVE-2026-5408.html * https://www.suse.com/security/cve/CVE-2026-5409.html * https://www.suse.com/security/cve/CVE-2026-5653.html * https://www.suse.com/security/cve/CVE-2026-5654.html * https://www.suse.com/security/cve/CVE-2026-5656.html * https://www.suse.com/security/cve/CVE-2026-5657.html * https://www.suse.com/security/cve/CVE-2026-6519.html * https://www.suse.com/security/cve/CVE-2026-6520.html * https://www.suse.com/security/cve/CVE-2026-6521.html * https://www.suse.com/security/cve/CVE-2026-6522.html * https://www.suse.com/security/cve/CVE-2026-6523.html * https://www.suse.com/security/cve/CVE-2026-6524.html * https://www.suse.com/security/cve/CVE-2026-6527.html * https://www.suse.com/security/cve/CVE-2026-6529.html * https://www.suse.com/security/cve/CVE-2026-6530.html * https://www.suse.com/security/cve/CVE-2026-6531.html * https://www.suse.com/security/cve/CVE-2026-6532.html * https://www.suse.com/security/cve/CVE-2026-6533.html * https://www.suse.com/security/cve/CVE-2026-6534.html * https://www.suse.com/security/cve/CVE-2026-6535.html * https://www.suse.com/security/cve/CVE-2026-6537.html * https://www.suse.com/security/cve/CVE-2026-6538.html * https://www.suse.com/security/cve/CVE-2026-6868.html * https://www.suse.com/security/cve/CVE-2026-6869.html * https://bugzilla.suse.com/show_bug.cgi?id=1258907 * https://bugzilla.suse.com/show_bug.cgi?id=1258909 * https://bugzilla.suse.com/show_bug.cgi?id=1263726 * https://bugzilla.suse.com/show_bug.cgi?id=1263728 * https://bugzilla.suse.com/show_bug.cgi?id=1263729 * https://bugzilla.suse.com/show_bug.cgi?id=1263731 * https://bugzilla.suse.com/show_bug.cgi?id=1263732 * https://bugzilla.suse.com/show_bug.cgi?id=1263733 * https://bugzilla.suse.com/show_bug.cgi?id=1263734 * https://bugzilla.suse.com/show_bug.cgi?id=1263735 * https://bugzilla.suse.com/show_bug.cgi?id=1263736 * https://bugzilla.suse.com/show_bug.cgi?id=1263737 *https://bugzilla.suse.com/show_bug.cgi?id=1263739 * https://bugzilla.suse.com/show_bug.cgi?id=1263741 * https://bugzilla.suse.com/show_bug.cgi?id=1263742 * https://bugzilla.suse.com/show_bug.cgi?id=1263743 * https://bugzilla.suse.com/show_bug.cgi?id=1263744 * https://bugzilla.suse.com/show_bug.cgi?id=1263745 * https://bugzilla.suse.com/show_bug.cgi?id=1263746 * https://bugzilla.suse.com/show_bug.cgi?id=1263747 * https://bugzilla.suse.com/show_bug.cgi?id=1263749 * https://bugzilla.suse.com/show_bug.cgi?id=1263750 * https://bugzilla.suse.com/show_bug.cgi?id=1263751 * https://bugzilla.suse.com/show_bug.cgi?id=1263752 * https://bugzilla.suse.com/show_bug.cgi?id=1263753 * https://bugzilla.suse.com/show_bug.cgi?id=1263754 * https://bugzilla.suse.com/show_bug.cgi?id=1263756 * https://bugzilla.suse.com/show_bug.cgi?id=1263757 * https://bugzilla.suse.com/show_bug.cgi?id=1263762 * https://bugzilla.suse.com/show_bug.cgi?id=1263765 * https://bugzilla.suse.com/show_bug.cgi?id=1263766 * https://bugzilla.suse.com/show_bug.cgi?id=1263767 * https://bugzilla.suse.com/show_bug.cgi?id=1263809 . SUSE Linux updates resolve 33 issues in Wireshark, enhancing security for users and preventing potential attacks.. SUSE Wireshark Update Security Fix Important. . Severity: Important. LinuxSecurity.com Team
An update that solves 33 vulnerabilities and has 33 bug fixes can now be installed.. openSUSE security update: security update for wireshark ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20685-1 Rating: important References: * bsc#1258907 * bsc#1258909 * bsc#1263726 * bsc#1263728 * bsc#1263729 * bsc#1263731 * bsc#1263732 * bsc#1263733 * bsc#1263734 * bsc#1263735 * bsc#1263736 * bsc#1263737 * bsc#1263739 * bsc#1263741 * bsc#1263742 * bsc#1263743 * bsc#1263744 * bsc#1263745 * bsc#1263746 * bsc#1263747 * bsc#1263749 * bsc#1263750 * bsc#1263751 * bsc#1263752 * bsc#1263753 * bsc#1263754 * bsc#1263756 * bsc#1263757 * bsc#1263762 * bsc#1263765 * bsc#1263766 * bsc#1263767 * bsc#1263809 Cross-References: * CVE-2026-3201 * CVE-2026-3203 * CVE-2026-5299 * CVE-2026-5401 * CVE-2026-5403 * CVE-2026-5404 * CVE-2026-5405 * CVE-2026-5406 * CVE-2026-5407 * CVE-2026-5408 * CVE-2026-5409 * CVE-2026-5653 * CVE-2026-5654 * CVE-2026-5656 * CVE-2026-5657 * CVE-2026-6519 * CVE-2026-6520 * CVE-2026-6521 * CVE-2026-6522 * CVE-2026-6523 * CVE-2026-6524 * CVE-2026-6527 * CVE-2026-6529 * CVE-2026-6530 * CVE-2026-6531 * CVE-2026-6532 * CVE-2026-6533 * CVE-2026-6534 * CVE-2026-6535 * CVE-2026-6537 * CVE-2026-6538 * CVE-2026-6868 * CVE-2026-6869 Affected Products: openSUSE Leap 16.0 ------------------------------------------------------------- An update that solves 33 vulnerabilities and has 33 bug fixes can now be installed. Description: This update for wireshark fixes the following issues - CVE-2026-3201: missing limit checks in USB HID protocol dissector's `parse_report_descriptor` function can lead to memory exhaustion (bsc#1258907). - CVE-2026-3203: missing length checks in the RF4CE Profile protocol dissector can lead to illegal memory access and crash (bsc#1258909). - CVE-2026-5299: ICMPv6 dissector crash (bsc#1263757). -CVE-2026-5401: AFP dissector crash (bsc#1263756). - CVE-2026-5403: SBC audio codec crash (bsc#1263765). - CVE-2026-5404: K12 RF5 file parser crash (bsc#1263766). - CVE-2026-5405: RDP dissector crash (bsc#1263767). - CVE-2026-5406: FC-SWILS dissector crash (bsc#1263754). - CVE-2026-5407: SMB2 dissector infinite loop (bsc#1263753). - CVE-2026-5408: BT-DHT dissector crash (bsc#1263752). - CVE-2026-5409: Monero dissector crash (bsc#1263751). - CVE-2026-5653: DCP-ETSI dissector crash (bsc#1263750). - CVE-2026-5654: AMR-NB audio codec crash (bsc#1263749). - CVE-2026-5656: Profile import crash and possible code execution (bsc#1263809). - CVE-2026-5657: iLBC audio codec crash (bsc#1263747). - CVE-2026-6519: MBIM protocol dissector infinite loop (bsc#1263746). - CVE-2026-6520: OpenFlow v6 protocol dissector infinite loop (bsc#1263745). - CVE-2026-6521: OpenFlow v5 protocol dissector infinite loops (bsc#1263744). - CVE-2026-6522: RPKI-Router protocol dissector infinite loop (bsc#1263743). - CVE-2026-6523: GNW protocol dissector infinite loop (bsc#1263742). - CVE-2026-6524: MySQL protocol dissector crash (bsc#1263741). - CVE-2026-6527: ASN.1 PER dissector crash (bsc#1263739). - CVE-2026-6529: iLBC audio codec crash (bsc#1263737). - CVE-2026-6530: DCP-ETSI protocol dissector crash (bsc#1263736). - CVE-2026-6531: SANE protocol dissector infinite loop (bsc#1263735). - CVE-2026-6532: Kismet protocol dissector crash (bsc#1263734). - CVE-2026-6533: Dissection engine LZ77 decompression crash (bsc#1263733). - CVE-2026-6534: USB HID dissector infinite loop (bsc#1263732). - CVE-2026-6535: Dissection engine zlib decompression crash (bsc#1263731). - CVE-2026-6537: ZigBee dissector crash (bsc#1263729). - CVE-2026-6538: BEEP dissector crash (bsc#1263728). - CVE-2026-6868: HTTP protocol dissector crash (bsc#1263762). - CVE-2026-6869: WebSocket protocol dissector crash (bsc#1263726). Changes for wireshark: - Updated to 4.4.15 Patch instructions: To install this openSUSE security update use the suse recommended installationmethods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 16.0 zypper in -t patch openSUSE-Leap-16.0-702=1 Package List: - openSUSE Leap 16.0: libwireshark18-4.4.15-160000.1.1 libwiretap15-4.4.15-160000.1.1 libwsutil16-4.4.15-160000.1.1 wireshark-4.4.15-160000.1.1 wireshark-devel-4.4.15-160000.1.1 wireshark-ui-qt-4.4.15-160000.1.1 References: * https://www.suse.com/security/cve/CVE-2026-3201.html * https://www.suse.com/security/cve/CVE-2026-3203.html * https://www.suse.com/security/cve/CVE-2026-5299.html * https://www.suse.com/security/cve/CVE-2026-5401.html * https://www.suse.com/security/cve/CVE-2026-5403.html * https://www.suse.com/security/cve/CVE-2026-5404.html * https://www.suse.com/security/cve/CVE-2026-5405.html * https://www.suse.com/security/cve/CVE-2026-5406.html * https://www.suse.com/security/cve/CVE-2026-5407.html * https://www.suse.com/security/cve/CVE-2026-5408.html * https://www.suse.com/security/cve/CVE-2026-5409.html * https://www.suse.com/security/cve/CVE-2026-5653.html * https://www.suse.com/security/cve/CVE-2026-5654.html * https://www.suse.com/security/cve/CVE-2026-5656.html * https://www.suse.com/security/cve/CVE-2026-5657.html * https://www.suse.com/security/cve/CVE-2026-6519.html * https://www.suse.com/security/cve/CVE-2026-6520.html * https://www.suse.com/security/cve/CVE-2026-6521.html * https://www.suse.com/security/cve/CVE-2026-6522.html * https://www.suse.com/security/cve/CVE-2026-6523.html * https://www.suse.com/security/cve/CVE-2026-6524.html * https://www.suse.com/security/cve/CVE-2026-6527.html * https://www.suse.com/security/cve/CVE-2026-6529.html * https://www.suse.com/security/cve/CVE-2026-6530.html * https://www.suse.com/security/cve/CVE-2026-6531.html * https://www.suse.com/security/cve/CVE-2026-6532.html * https://www.suse.com/security/cve/CVE-2026-6533.html * https://www.suse.com/security/cve/CVE-2026-6534.html *https://www.suse.com/security/cve/CVE-2026-6535.html * https://www.suse.com/security/cve/CVE-2026-6537.html * https://www.suse.com/security/cve/CVE-2026-6538.html * https://www.suse.com/security/cve/CVE-2026-6868.html * https://www.suse.com/security/cve/CVE-2026-6869.html . Update for openSUSE solves 33 important issues in Wireshark, ensuring enhanced security and stability.. openSUSE 2026 wireshark update important bug fixes. . Severity: Important. LinuxSecurity.com Team
Multiple vulnerabilities have been discocvered in Wireshark, a network protocol analyzer which could result in denial of service or the execution of arbitrary code. For the oldstable distribution (bookworm), a subset of these problems have been fixed in version 4.0.17-0+deb12u3.. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6249-1
Get the latest Linux and open source security news straight to your inbox.