CVE-2020-25862

CVE-2020-25862

Name

CVE-2020-25862

Description

In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by changing the handling of the invalid 0xFFFF checksum.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
Vendor Advisory	https://www.wireshark.org/security/wnpa-sec-2020-12.html
Exploit	https://gitlab.com/wireshark/wireshark/-/issues/16816
Patch	https://gitlab.com/wireshark/wireshark/-/commit/7f3fe6164a68b76d9988c4253b24d43f498f1753
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6IGRYKW4XLR44YDWTAH547ODYYBYPB2D/
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4DQHPKZFQ7W3X34RYN3FWFYCFJD4FXJW/
Mailing List	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZUHMK5HYTUUDXA64T2TAMAFMYV674QBW/
Mailing List	http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00035.html
Mailing List	http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00038.html
Patch	https://www.oracle.com/security-alerts/cpujan2021.html
Mailing List	https://lists.debian.org/debian-lts-announce/2021/02/msg00008.html

Type

URI

Vendor Advisory

https://www.wireshark.org/security/wnpa-sec-2020-12.html

Exploit

https://gitlab.com/wireshark/wireshark/-/issues/16816

Patch

https://gitlab.com/wireshark/wireshark/-/commit/7f3fe6164a68b76d9988c4253b24d43f498f1753

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6IGRYKW4XLR44YDWTAH547ODYYBYPB2D/

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4DQHPKZFQ7W3X34RYN3FWFYCFJD4FXJW/

Mailing List

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZUHMK5HYTUUDXA64T2TAMAFMYV674QBW/

Mailing List

http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00035.html

Mailing List

http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00038.html

Patch

https://www.oracle.com/security-alerts/cpujan2021.html

Mailing List

https://lists.debian.org/debian-lts-announce/2021/02/msg00008.html

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:wireshark:wireshark::::::::`	wireshark	>= 2.6.0	<= 2.6.20
`cpe:2.3:a:wireshark:wireshark::::::::`	wireshark	>= 3.0.0	<= 3.0.13
`cpe:2.3:a:wireshark:wireshark::::::::`	wireshark	>= 3.2.0	<= 3.2.6

CPE URI

Source package

Min version

Max version

cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*

wireshark

>= 2.6.0

<= 2.6.20

cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*

wireshark

>= 3.0.0

<= 3.0.13

cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*

wireshark

>= 3.2.0

<= 3.2.6

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
wireshark	edge-community	3.2.7-r0	None	fixed
wireshark	edge-community	3.2.6-r0	None	possibly vulnerable
wireshark	edge-community	3.2.5-r0	None	possibly vulnerable
wireshark	edge-community	3.2.4-r0	None	possibly vulnerable
wireshark	edge-community	3.2.3-r0	None	possibly vulnerable
wireshark	edge-community	3.2.2-r0	None	possibly vulnerable
wireshark	edge-community	3.0.8-r0	None	possibly vulnerable
wireshark	edge-community	3.0.7-r0	None	possibly vulnerable
wireshark	edge-community	3.0.4-r0	None	possibly vulnerable
wireshark	edge-community	3.0.3-r0	None	possibly vulnerable
wireshark	edge-community	3.0.2-r0	None	possibly vulnerable
wireshark	edge-community	3.0.1-r0	None	possibly vulnerable
wireshark	edge-community	2.6.8-r0	None	possibly vulnerable
wireshark	edge-community	2.6.7-r0	None	possibly vulnerable
wireshark	edge-community	2.6.6-r0	None	possibly vulnerable
wireshark	edge-community	2.6.5-r0	None	possibly vulnerable
wireshark	edge-community	2.6.4-r0	None	possibly vulnerable
wireshark	edge-community	2.6.3-r0	None	possibly vulnerable
wireshark	edge-community	2.6.2-r0	None	possibly vulnerable
wireshark	3.22-community	3.2.7-r0	None	fixed
wireshark	3.22-community	3.2.6-r0	None	possibly vulnerable
wireshark	3.22-community	3.2.5-r0	None	possibly vulnerable
wireshark	3.22-community	3.2.4-r0	None	possibly vulnerable
wireshark	3.22-community	3.2.3-r0	None	possibly vulnerable
wireshark	3.22-community	3.2.2-r0	None	possibly vulnerable
wireshark	3.22-community	3.0.8-r0	None	possibly vulnerable
wireshark	3.22-community	3.0.7-r0	None	possibly vulnerable
wireshark	3.22-community	3.0.4-r0	None	possibly vulnerable
wireshark	3.22-community	3.0.3-r0	None	possibly vulnerable
wireshark	3.22-community	3.0.2-r0	None	possibly vulnerable
wireshark	3.22-community	3.0.1-r0	None	possibly vulnerable
wireshark	3.22-community	2.6.8-r0	None	possibly vulnerable
wireshark	3.22-community	2.6.7-r0	None	possibly vulnerable
wireshark	3.22-community	2.6.6-r0	None	possibly vulnerable
wireshark	3.22-community	2.6.5-r0	None	possibly vulnerable
wireshark	3.22-community	2.6.4-r0	None	possibly vulnerable
wireshark	3.22-community	2.6.3-r0	None	possibly vulnerable
wireshark	3.22-community	2.6.2-r0	None	possibly vulnerable
wireshark	3.21-community	3.2.7-r0	None	fixed
wireshark	3.20-community	3.2.7-r0	None	fixed
wireshark	3.19-community	3.2.7-r0	None	fixed
wireshark	3.18-community	3.2.7-r0	None	fixed
wireshark	3.17-community	3.2.7-r0	None	fixed

Source package

Branch

Version

Maintainer

Status

wireshark

edge-community

3.2.7-r0

None

fixed

wireshark

edge-community