Bug 1177406 – VUL-1: CVE-2020-26575: wireshark: the Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop

Bug 1177406 - (CVE-2020-26575) VUL-1: CVE-2020-26575: wireshark: the Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop

(CVE-2020-26575)
Summary:	VUL-1: CVE-2020-26575: wireshark: the Facebook Zero Protocol (aka FBZERO) dis...

Status:	RESOLVED FIXED
Duplicates:	1178290 (view as bug list)

Classification:	Novell Products
Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents
Version:	unspecified
Hardware:	Other Other

Priority:	P4 - Low Severity: Minor
Target Milestone:	---
Assigned To:	Robert Frohl
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/268849/
Whiteboard:	CVSSv3.1:SUSE:CVE-2020-26575:4.3:(AV:...
Keywords:

Depends on:
Blocks:
	Show dependency tree / graph

Create test case

Clone This Bug

Reported:	2020-10-07 07:31 UTC by Robert Frohl
Modified:	2021-09-06 14:58 UTC (History)
CC List:	2 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Robert Frohl 2020-10-07 07:31:33 UTC

CVE-2020-26575

In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector
could enter an infinite loop. This was addressed in
epan/dissectors/packet-fbzero.c by correcting the implementation of offset
advancement.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-26575
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26575
https://gitlab.com/wireshark/wireshark/-/commit/3ff940652962c099b73ae3233322b8697b0d10ab
https://gitlab.com/wireshark/wireshark/-/issues/16887
https://gitlab.com/wireshark/wireshark/-/merge_requests/467
https://gitlab.com/wireshark/wireshark/-/merge_requests/471
https://gitlab.com/wireshark/wireshark/-/merge_requests/472
https://gitlab.com/wireshark/wireshark/-/merge_requests/473

Comment 1 Robert Frohl 2020-10-30 12:07:09 UTC

*** Bug 1178290 has been marked as a duplicate of this bug. ***

Comment 3 Swamp Workflow Management 2020-11-19 14:18:08 UTC

SUSE-SU-2020:3376-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1177406,1178291
CVE References: CVE-2020-26575,CVE-2020-28030
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (src):    wireshark-3.2.8-3.44.1
SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (src):    wireshark-3.2.8-3.44.1
SUSE Linux Enterprise Module for Basesystem 15-SP2 (src):    wireshark-3.2.8-3.44.1
SUSE Linux Enterprise Module for Basesystem 15-SP1 (src):    wireshark-3.2.8-3.44.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 4 Swamp Workflow Management 2020-11-27 14:18:30 UTC

openSUSE-SU-2020:2076-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1177406,1178291
CVE References: CVE-2020-26575,CVE-2020-28030
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    wireshark-3.2.8-lp152.2.9.1

Comment 5 Swamp Workflow Management 2020-11-29 17:17:29 UTC

openSUSE-SU-2020:2107-1: An update that fixes two vulnerabilities is now available.

Category: security (moderate)
Bug References: 1177406,1178291
CVE References: CVE-2020-26575,CVE-2020-28030
JIRA References: 
Sources used:
openSUSE Leap 15.1 (src):    wireshark-3.2.8-lp151.2.18.1

Comment 6 Marcus Meissner 2021-09-06 14:58:55 UTC

released