CVE-2023-1161

NameCVE-2023-1161
DescriptionISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-3402-1, DLA-3906-1, DSA-5429-1, ELA-839-1
Debian Bugs1033756

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
wireshark (PTS)jessie, jessie (lts)1.12.1+g01b65bf-4+deb8u19vulnerable
stretch (security)2.6.20-0+deb9u3vulnerable
stretch (lts), stretch2.6.20-0+deb10u9~deb9u1fixed
buster, buster (lts)2.6.20-0+deb10u9fixed
buster (security)2.6.20-0+deb10u8fixed
bullseye3.4.10-0+deb11u1vulnerable
bullseye (security)3.4.16-0+deb11u1fixed
bookworm4.0.17-0+deb12u1fixed
bookworm (security)4.0.11-1~deb12u1fixed
trixie4.4.0-1fixed
sid4.4.2-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
wiresharksourceexperimental4.0.5-1~exp1
wiresharksourcejessie(unfixed)end-of-life
wiresharksourcestretch2.6.20-0+deb9u5ELA-839-1
wiresharksourcebuster2.6.20-0+deb10u6DLA-3402-1
wiresharksourcebullseye3.4.16-0+deb11u1DLA-3906-1
wiresharksourcebookworm4.0.6-1~deb12u1DSA-5429-1
wiresharksource(unstable)4.0.6-11033756

Notes

https://www.wireshark.org/security/wnpa-sec-2023-08.html
https://gitlab.com/wireshark/wireshark/-/issues/18839
Only affects ISO 15765 dissector in bullseye and older,
ISO 10681 support was added in 3.6

Search for package or bug name: Reporting problems