SB2024051607 - Multiple vulnerabilities in Wireshark
Published: May 16, 2024
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 secuirty vulnerabilities.
1) Infinite loop (CVE-ID: CVE-2024-4854)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop in MONGO and ZigBee TLV dissectors. A remote attacker can consume all available system resources and cause denial of service conditions.
2) Input validation error (CVE-ID: CVE-2024-4853)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input in the editcap command line utility. A remote attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.
3) Use-after-free (CVE-ID: CVE-2024-4855)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a use-after-free error in editcap command line utility. A remote attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://www.wireshark.org/security/wnpa-sec-2024-07.html
- https://gitlab.com/wireshark/wireshark/-/issues/19726
- https://gitlab.com/wireshark/wireshark/-/merge_requests/15047
- https://gitlab.com/wireshark/wireshark/-/merge_requests/15499
- https://www.wireshark.org/security/wnpa-sec-2024-08.html
- https://gitlab.com/wireshark/wireshark/-/issues/19724
- https://gitlab.com/wireshark/wireshark/-/issues/19782
- https://gitlab.com/wireshark/wireshark/-/issues/19783
- https://gitlab.com/wireshark/wireshark/-/issues/19784