USN-3986-1: Wireshark vulnerabilities
16 May 2019
Wireshark could be made to crash if it received specially crafted network traffic or input files.
Releases
Packages
- wireshark - network traffic analyzer
Details
It was discovered that Wireshark improperly handled certain input. A remote or
local attacker could cause Wireshark to crash by injecting malform packets onto
the wire or convincing someone to read a malformed packet trace file.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 18.10
-
libwireshark-data
-
2.6.8-1~ubuntu18.10.0
-
libwireshark11
-
2.6.8-1~ubuntu18.10.0
-
libwiretap8
-
2.6.8-1~ubuntu18.10.0
-
libwscodecs2
-
2.6.8-1~ubuntu18.10.0
-
libwsutil9
-
2.6.8-1~ubuntu18.10.0
-
tshark
-
2.6.8-1~ubuntu18.10.0
-
wireshark
-
2.6.8-1~ubuntu18.10.0
-
wireshark-common
-
2.6.8-1~ubuntu18.10.0
-
wireshark-gtk
-
2.6.8-1~ubuntu18.10.0
-
wireshark-qt
-
2.6.8-1~ubuntu18.10.0
Ubuntu 18.04
-
libwireshark-data
-
2.6.8-1~ubuntu18.04.0
-
libwireshark11
-
2.6.8-1~ubuntu18.04.0
-
libwiretap8
-
2.6.8-1~ubuntu18.04.0
-
libwscodecs2
-
2.6.8-1~ubuntu18.04.0
-
libwsutil9
-
2.6.8-1~ubuntu18.04.0
-
tshark
-
2.6.8-1~ubuntu18.04.0
-
wireshark
-
2.6.8-1~ubuntu18.04.0
-
wireshark-common
-
2.6.8-1~ubuntu18.04.0
-
wireshark-gtk
-
2.6.8-1~ubuntu18.04.0
-
wireshark-qt
-
2.6.8-1~ubuntu18.04.0
Ubuntu 16.04
-
libwireshark-data
-
2.6.8-1~ubuntu16.04.0
-
libwireshark11
-
2.6.8-1~ubuntu16.04.0
-
libwiretap8
-
2.6.8-1~ubuntu16.04.0
-
libwscodecs2
-
2.6.8-1~ubuntu16.04.0
-
libwsutil9
-
2.6.8-1~ubuntu16.04.0
-
tshark
-
2.6.8-1~ubuntu16.04.0
-
wireshark
-
2.6.8-1~ubuntu16.04.0
-
wireshark-common
-
2.6.8-1~ubuntu16.04.0
-
wireshark-gtk
-
2.6.8-1~ubuntu16.04.0
-
wireshark-qt
-
2.6.8-1~ubuntu16.04.0
In general, a standard system update will make all the necessary changes.