==========================================================================
\nUbuntu Security Notice USN-6262-1
\nJuly 31, 2023<\/p>\n
wireshark vulnerabilities
\n==========================================================================<\/p>\n
A security issue affects these releases of Ubuntu and its derivatives:<\/p>\n
– Ubuntu 20.04 LTS (Available with Ubuntu Pro)
\n– Ubuntu 18.04 LTS (Available with Ubuntu Pro)
\n– Ubuntu 16.04 LTS (Available with Ubuntu Pro)
\n– Ubuntu 14.04 LTS (Available with Ubuntu Pro)<\/p>\n
Summary:<\/p>\n
Several security issues were fixed in Wireshark.<\/p>\n
Software Description:
\n– wireshark: network traffic analyzer – meta-package<\/p>\n
Details:<\/p>\n
It was discovered that Wireshark did not properly handle certain
\nNFS packages when certain configuration options were enabled.
\nAn attacker could possibly use this issue to cause
\nWireshark to crash, resulting in a denial of service. (CVE-2020-13164)<\/p>\n
It was discovered that Wireshark did not properly handle certain GVCP
\npackages. An attacker could possibly use this issue to cause
\nWireshark to crash, resulting in a denial of service. This issue only
\naffected Ubuntu 20.04 LTS. (CVE-2020-15466)<\/p>\n
It was discovered that Wireshark did not properly handle certain
\nKafka packages. An attacker could possibly use this issue to cause
\nWireshark to crash, resulting in a denial of service. This issue only
\naffected Ubuntu 20.04 LTS. (CVE-2020-17498)<\/p>\n
It was discovered that Wireshark did not properly handle certain TCP
\npackages containing an invalid 0xFFFF checksum. An attacker could
\npossibly use this issue to cause Wireshark to crash, resulting in
\na denial of service. (CVE-2020-25862)<\/p>\n
It was discovered that Wireshark did not properly handle certain
\nMIME packages containing invalid parts. An attacker could
\npossibly use this issue to cause Wireshark to crash, resulting in
\na denial of service. (CVE-2020-25863)<\/p>\n
Update instructions:<\/p>\n
The problem can be corrected by updating your system to the following
\npackage versions:<\/p>\n
Ubuntu 20.04 LTS (Available with Ubuntu Pro):
\nlibwireshark13 3.2.3-1ubuntu0.1~esm1
\ntshark 3.2.3-1ubuntu0.1~esm1
\nwireshark 3.2.3-1ubuntu0.1~esm1
\nwireshark-common 3.2.3-1ubuntu0.1~esm1
\nwireshark-gtk 3.2.3-1ubuntu0.1~esm1
\nwireshark-qt 3.2.3-1ubuntu0.1~esm1<\/p>\n
Ubuntu 18.04 LTS (Available with Ubuntu Pro):
\nlibwireshark11 2.6.10-1~ubuntu18.04.0+esm1
\ntshark 2.6.10-1~ubuntu18.04.0+esm1
\nwireshark 2.6.10-1~ubuntu18.04.0+esm1
\nwireshark-common 2.6.10-1~ubuntu18.04.0+esm1
\nwireshark-gtk 2.6.10-1~ubuntu18.04.0+esm1
\nwireshark-qt 2.6.10-1~ubuntu18.04.0+esm1<\/p>\n
Ubuntu 16.04 LTS (Available with Ubuntu Pro):
\nlibwireshark11 2.6.10-1~ubuntu16.04.0+esm1
\ntshark 2.6.10-1~ubuntu16.04.0+esm1
\nwireshark 2.6.10-1~ubuntu16.04.0+esm1
\nwireshark-common 2.6.10-1~ubuntu16.04.0+esm1
\nwireshark-gtk 2.6.10-1~ubuntu16.04.0+esm1
\nwireshark-qt 2.6.10-1~ubuntu16.04.0+esm1<\/p>\n
Ubuntu 14.04 LTS (Available with Ubuntu Pro):
\nlibwireshark11 2.6.10-1~ubuntu14.04.0~esm2
\ntshark 2.6.10-1~ubuntu14.04.0~esm2
\nwireshark 2.6.10-1~ubuntu14.04.0~esm2
\nwireshark-common 2.6.10-1~ubuntu14.04.0~esm2
\nwireshark-gtk 2.6.10-1~ubuntu14.04.0~esm2
\nwireshark-qt 2.6.10-1~ubuntu14.04.0~esm2<\/p>\n
In general, a standard system update will make all the necessary changes.<\/p>\n
References:
\nhttps:\/\/ubuntu.com\/security\/notices\/USN-6262-1
\nCVE-2020-13164, CVE-2020-15466, CVE-2020-17498, CVE-2020-25862,
\nCVE-2020-25863<\/p>\n","protected":false},"excerpt":{"rendered":"
========================================================================== Ubuntu Security Notice USN-6262-1 July 31, 2023 wireshark vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: – Ubuntu 20.04 LTS (Available with Ubuntu Pro) – Ubuntu 18.04 LTS (Available with Ubuntu Pro) – Ubuntu 16.04 LTS (Available with Ubuntu Pro) – Ubuntu 14.04 LTS (Available with Ubuntu Pro) Summary: …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-45889","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/45889","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=45889"}],"version-history":[{"count":1,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/45889\/revisions"}],"predecessor-version":[{"id":45999,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/45889\/revisions\/45999"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=45889"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=45889"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=45889"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}