KLA11728
Multiple vulnerabilities in Wireshark
Updated: 05/22/2020
Detect date
?
02/26/2020
Severity
?
Warning
Description

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service.

Below is a complete list of vulnerabilities:

  1. Leak memory vulnerability in LTE RRC dissector can be exploiter via special deigned packet to cause denial of service.
  2. Denial of service vulnerability in WireGuard dissector can be exploiter via special deigned packet.
  3. Denial of service vulnerability in EAP dissector can be exploiter via special deigned packet.
  4. Denial of service vulnerability in WiMax DLMAP dissector can be exploiter via special deigned packet.
Affected products

Wireshark 3.2.x up to 3.2.2
Wireshark 3.0.x up to 3.0.9
Wireshark 2.6.x up to 2.6.15

Solution

Update to the latest version
Download Wireshark

Original advisories

wnpa-sec-2020-03
wnpa-sec-2020-04
wnpa-sec-2020-05
wnpa-sec-2020-06

Impacts
?
DoS 
[?]
Related products
Wireshark
CVE-IDS
?
CVE-2020-94310.0Unknown
CVE-2020-94290.0Unknown
CVE-2020-94280.0Unknown
CVE-2020-94300.0Unknown