Bug 1171899 - (CVE-2020-13164) VUL-1: CVE-2020-13164 : wireshark: NFS dissector crash (wnpa-sec-2020-08)
(CVE-2020-13164)
VUL-1: CVE-2020-13164 : wireshark: NFS dissector crash (wnpa-sec-2020-08)
Status: IN_PROGRESS
Classification: openSUSE
Product: openSUSE Distribution
Classification: openSUSE
Component: Security
Leap 15.1
Other Other
: P4 - Low : Normal (vote)
: ---
Assigned To: Robert Frohl
E-mail List
https://smash.suse.de/issue/259655/
CVSSv3.1:SUSE:CVE-2020-13164:5.3:(AV:...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2020-05-20 06:13 UTC by Andreas Stieger
Modified: 2020-08-14 19:26 UTC (History)
1 user (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments
aa.pcap (69.18 KB, application/vnd.tcpdump.pcap)
2020-05-26 09:56 UTC, Marcus Meissner
Details

Note You need to log in before you can comment on or make changes to this bug.
Description Andreas Stieger 2020-05-20 06:13:50 UTC
It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
Resolution

Affected versions: 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, 2.6.0 to 2.6.16
Fixed versions: 3.2.4, 3.0.11, 2.6.17

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16476
https://www.wireshark.org/security/wnpa-sec-2020-08
https://www.wireshark.org/lists/wireshark-announce/202005/msg00000.html
https://www.wireshark.org/lists/wireshark-announce/202005/msg00001.html
https://www.wireshark.org/lists/wireshark-announce/202005/msg00002.html
Comment 1 Marcus Meissner 2020-05-26 09:56:59 UTC
Created attachment 838178 [details]
aa.pcap

Q REPRODUCER:

wireshark -r aa.pcap
Comment 3 Swamp Workflow Management 2020-08-06 13:13:17 UTC
SUSE-SU-2020:2144-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1169063,1171899,1173606
CVE References: CVE-2020-11647,CVE-2020-13164,CVE-2020-15466
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (src):    wireshark-3.2.5-3.38.1
SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (src):    wireshark-3.2.5-3.38.1
SUSE Linux Enterprise Module for Basesystem 15-SP2 (src):    wireshark-3.2.5-3.38.1
SUSE Linux Enterprise Module for Basesystem 15-SP1 (src):    wireshark-3.2.5-3.38.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
Comment 4 Swamp Workflow Management 2020-08-12 16:14:58 UTC
openSUSE-SU-2020:1188-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1169063,1171899,1173606
CVE References: CVE-2020-11647,CVE-2020-13164,CVE-2020-15466
JIRA References: 
Sources used:
openSUSE Leap 15.1 (src):    wireshark-3.2.5-lp151.2.12.1
Comment 5 Swamp Workflow Management 2020-08-14 19:26:11 UTC
openSUSE-SU-2020:1199-1: An update that fixes three vulnerabilities is now available.

Category: security (moderate)
Bug References: 1169063,1171899,1173606
CVE References: CVE-2020-11647,CVE-2020-13164,CVE-2020-15466
JIRA References: 
Sources used:
openSUSE Leap 15.2 (src):    wireshark-3.2.5-lp152.2.3.1