917421 – (CVE-2023-6174, WNPA-SEC-2023-28) <net-analyzer/wireshark-4.0.11: Out-of-bounds Read

Bug 917421 (CVE-2023-6174, WNPA-SEC-2023-28) - <net-analyzer/wireshark-4.0.11: Out-of-bounds Read

Summary: <net-analyzer/wireshark-4.0.11: Out-of-bounds Read

Status:	RESOLVED FIXED

Alias:	CVE-2023-6174, WNPA-SEC-2023-28

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal minor
Assignee:	Gentoo Security

URL:	https://www.wireshark.org/security/wn...
Whiteboard:	B4 [glsa+]
Keywords:

Depends on:	920211
Blocks:
	Show dependency tree

Reported:	2023-11-16 12:18 UTC by Jarkko Suominen
Modified:	2024-02-04 09:12 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Jarkko Suominen 2023-11-16 12:18:23 UTC

https ://www.cve.org/CVERecord?id=CVE-2023-6174
https ://www.wireshark.org/security/wnpa-sec-2023-28.html
https ://gitlab.com/wireshark/wireshark/-/issues/19369

Affected versions: 4.0.0 to 4.0.10

Description:
The SSH dissector could crash.

Impact:
It may be possible to make Wireshark crash or consume excessive CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.

Resolution:
Upgrade to Wireshark 4.0.11 or later.

Upstream has the patched version available.

Comment 1 John Helmert III archtester

2023-11-17 03:00:52 UTC

Dropping the version from summary as it doesn't seem there's a fixed version in tree?

Comment 2 Larry the Git Cow gentoo-dev

2023-11-17 13:58:49 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e7708424b1ed5879c6be30485a1a8d8b9d5a1b3b

commit e7708424b1ed5879c6be30485a1a8d8b9d5a1b3b
Author:     Sam James <sam@gentoo.org>
AuthorDate: 2023-11-17 13:57:50 +0000
Commit:     Sam James <sam@gentoo.org>
CommitDate: 2023-11-17 13:58:00 +0000

    net-analyzer/wireshark: add 4.0.11
    
    I'll be doing 4.2.0 later.
    
    Bug: https://bugs.gentoo.org/917421
    Signed-off-by: Sam James <sam@gentoo.org>

 net-analyzer/wireshark/Manifest                |   2 +
 net-analyzer/wireshark/wireshark-4.0.11.ebuild | 341 +++++++++++++++++++++++++
 2 files changed, 343 insertions(+)

Comment 3 Larry the Git Cow gentoo-dev

2023-12-28 04:24:40 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=13512c2eed433e1b7b8c7261198f0a75d6aa0b1e

commit 13512c2eed433e1b7b8c7261198f0a75d6aa0b1e
Author:     Sam James <sam@gentoo.org>
AuthorDate: 2023-12-28 04:24:04 +0000
Commit:     Sam James <sam@gentoo.org>
CommitDate: 2023-12-28 04:24:04 +0000

    net-analyzer/wireshark: drop 4.0.8, 4.0.10
    
    Bug: https://bugs.gentoo.org/915224
    Bug: https://bugs.gentoo.org/917421
    Signed-off-by: Sam James <sam@gentoo.org>

 net-analyzer/wireshark/Manifest                |   3 -
 net-analyzer/wireshark/wireshark-4.0.10.ebuild | 341 -------------------------
 net-analyzer/wireshark/wireshark-4.0.8.ebuild  | 316 -----------------------
 3 files changed, 660 deletions(-)

Comment 4 Larry the Git Cow gentoo-dev

2024-02-04 09:10:58 UTC

The bug has been referenced in the following commit(s):

https://gitweb.gentoo.org/data/glsa.git/commit/?id=860281bb89beab468566ee29b1c64481900259d1

commit 860281bb89beab468566ee29b1c64481900259d1
Author:     GLSAMaker <glsamaker@gentoo.org>
AuthorDate: 2024-02-04 09:10:28 +0000
Commit:     Hans de Graaff <graaff@gentoo.org>
CommitDate: 2024-02-04 09:10:53 +0000

    [ GLSA 202402-09 ] Wireshark: Multiple Vulnerabilities
    
    Bug: https://bugs.gentoo.org/915224
    Bug: https://bugs.gentoo.org/917421
    Signed-off-by: GLSAMaker <glsamaker@gentoo.org>
    Signed-off-by: Hans de Graaff <graaff@gentoo.org>

 glsa-202402-09.xml | 46 ++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 46 insertions(+)