Resolves: RHEL-136919 - NULL Pointer Dereference in Wireshark (CVE-2025-9817)
This commit is contained in:
parent
5f48992b08
commit
4b4e46b827
32
wireshark-0011-cve-2025-9817.patch
Normal file
32
wireshark-0011-cve-2025-9817.patch
Normal file
@ -0,0 +1,32 @@
|
||||
From d3db4696f7286b669a04ebfa49a0c5811a1da63f Mon Sep 17 00:00:00 2001
|
||||
From: John Thacker <johnthacker@gmail.com>
|
||||
Date: Sat, 26 Jul 2025 11:48:36 +0000
|
||||
Subject: [PATCH] ssh: Add a null check
|
||||
|
||||
Fix #20642
|
||||
|
||||
|
||||
(cherry picked from commit 39daba5e247ea495f88b0be82f0b7ebbdbf50fba)
|
||||
|
||||
Co-authored-by: John Thacker <johnthacker@gmail.com>
|
||||
---
|
||||
epan/dissectors/packet-ssh.c | 4 ++++
|
||||
1 file changed, 4 insertions(+)
|
||||
|
||||
diff --git a/epan/dissectors/packet-ssh.c b/epan/dissectors/packet-ssh.c
|
||||
index 11c6b597f2b..be0b8e71c9d 100644
|
||||
--- a/epan/dissectors/packet-ssh.c
|
||||
+++ b/epan/dissectors/packet-ssh.c
|
||||
@@ -2456,6 +2456,10 @@ ssh_kex_shared_secret(int kex_type, ssh_bignum *pub, ssh_bignum *priv, ssh_bignu
|
||||
}
|
||||
|
||||
if(kex_type==SSH_KEX_DH_GEX){
|
||||
+ if (modulo == NULL) {
|
||||
+ ws_debug("Missing group modulo");
|
||||
+ return NULL;
|
||||
+ }
|
||||
gcry_mpi_t b = NULL;
|
||||
gcry_mpi_scan(&b, GCRYMPI_FMT_USG, pub->data, pub->length, NULL);
|
||||
gcry_mpi_t d = NULL, e = NULL, m = NULL;
|
||||
--
|
||||
GitLab
|
||||
@ -6,7 +6,7 @@
|
||||
Summary: Network traffic analyzer
|
||||
Name: wireshark
|
||||
Version: 4.4.2
|
||||
Release: 5%{?dist}
|
||||
Release: 6%{?dist}
|
||||
Epoch: 1
|
||||
License: BSD-1-Clause AND BSD-2-Clause AND BSD-3-Clause AND MIT AND GPL-2.0-or-later AND LGPL-2.0-or-later AND Zlib AND ISC AND (BSD-3-Clause OR GPL-2.0-only) AND (GPL-2.0-or-later AND Zlib)
|
||||
Url: http://www.wireshark.org/
|
||||
@ -30,6 +30,7 @@ Patch7: wireshark-0007-cmakelists.patch
|
||||
Patch8: wireshark-0008-pkgconfig.patch
|
||||
Patch9: wireshark-0009-cve-2025-1492.patch
|
||||
Patch10: wireshark-0010-cve-2025-13499.patch
|
||||
Patch11: wireshark-0011-cve-2025-9817.patch
|
||||
|
||||
#install tshark together with wireshark GUI
|
||||
Requires: %{name}-cli = %{epoch}:%{version}-%{release}
|
||||
@ -282,6 +283,9 @@ fi
|
||||
%{_libdir}/pkgconfig/%{name}.pc
|
||||
|
||||
%changelog
|
||||
* Sun Jan 25 2026 Michal Ruprich <mruprich@redhat.com> - 1:4.4.2-6
|
||||
- Resolves: RHEL-136919 - NULL Pointer Dereference in Wireshark (CVE-2025-9817)
|
||||
|
||||
* Mon Jan 19 2026 Michal Ruprich <mruprich@redhat.com> - 1:4.4.2-5
|
||||
- Resolves: RHEL-130427 - Access of Uninitialized Pointer in Wireshark
|
||||
|
||||
|
||||
Loading…
Reference in New Issue
Block a user