ALAS-2025-837

Amazon Linux 2023 Security Advisory: ALAS-2025-837
Advisory Release Date: 2025-01-30 03:53 Pacific
Advisory Updated Date: 2025-02-05 11:08 Pacific
Severity: Medium
Issue Overview:

ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file (CVE-2024-11596)

Buffer Overflow vulnerability in Wireshark team Wireshark before v.4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and format_fractional_part_nsecs components. (CVE-2024-24479)

NTLMSSP dissector crash in Wireshark 4.2.0 to 4.0.6 and 4.0.0 to 4.0.16 allows denial of service via packet injection or crafted capture file (CVE-2024-8250)

AppleTalk and RELOAD Framing dissector crash in Wireshark 4.4.0 and 4.2.0 to 4.2.7 allows denial of service via packet injection or crafted capture file (CVE-2024-9781)


Affected Packages:

wireshark


Issue Correction:
Run dnf update wireshark --releasever 2023.6.20250203 to update your system.

New Packages:
aarch64:
    wireshark-cli-debuginfo-4.4.2-1.amzn2023.0.1.aarch64
    wireshark-cli-4.4.2-1.amzn2023.0.1.aarch64
    wireshark-devel-4.4.2-1.amzn2023.0.1.aarch64
    wireshark-debugsource-4.4.2-1.amzn2023.0.1.aarch64

src:
    wireshark-4.4.2-1.amzn2023.0.1.src

x86_64:
    wireshark-cli-debuginfo-4.4.2-1.amzn2023.0.1.x86_64
    wireshark-cli-4.4.2-1.amzn2023.0.1.x86_64
    wireshark-devel-4.4.2-1.amzn2023.0.1.x86_64
    wireshark-debugsource-4.4.2-1.amzn2023.0.1.x86_64

Additional References

Red Hat: CVE-2024-11596, CVE-2024-24479, CVE-2024-8250, CVE-2024-9781

Mitre: CVE-2024-11596, CVE-2024-24479, CVE-2024-8250, CVE-2024-9781