Resolves: RHEL-136919 - NULL Pointer Dereference in Wireshark (CVE-2025-9817)

This commit is contained in:
Michal Ruprich 2026-01-25 15:23:01 +01:00
parent 5f48992b08
commit 4b4e46b827
2 changed files with 37 additions and 1 deletions

View File

@ -0,0 +1,32 @@
From d3db4696f7286b669a04ebfa49a0c5811a1da63f Mon Sep 17 00:00:00 2001
From: John Thacker <johnthacker@gmail.com>
Date: Sat, 26 Jul 2025 11:48:36 +0000
Subject: [PATCH] ssh: Add a null check
Fix #20642
(cherry picked from commit 39daba5e247ea495f88b0be82f0b7ebbdbf50fba)
Co-authored-by: John Thacker <johnthacker@gmail.com>
---
epan/dissectors/packet-ssh.c | 4 ++++
1 file changed, 4 insertions(+)
diff --git a/epan/dissectors/packet-ssh.c b/epan/dissectors/packet-ssh.c
index 11c6b597f2b..be0b8e71c9d 100644
--- a/epan/dissectors/packet-ssh.c
+++ b/epan/dissectors/packet-ssh.c
@@ -2456,6 +2456,10 @@ ssh_kex_shared_secret(int kex_type, ssh_bignum *pub, ssh_bignum *priv, ssh_bignu
}
if(kex_type==SSH_KEX_DH_GEX){
+ if (modulo == NULL) {
+ ws_debug("Missing group modulo");
+ return NULL;
+ }
gcry_mpi_t b = NULL;
gcry_mpi_scan(&b, GCRYMPI_FMT_USG, pub->data, pub->length, NULL);
gcry_mpi_t d = NULL, e = NULL, m = NULL;
--
GitLab

View File

@ -6,7 +6,7 @@
Summary: Network traffic analyzer
Name: wireshark
Version: 4.4.2
Release: 5%{?dist}
Release: 6%{?dist}
Epoch: 1
License: BSD-1-Clause AND BSD-2-Clause AND BSD-3-Clause AND MIT AND GPL-2.0-or-later AND LGPL-2.0-or-later AND Zlib AND ISC AND (BSD-3-Clause OR GPL-2.0-only) AND (GPL-2.0-or-later AND Zlib)
Url: http://www.wireshark.org/
@ -30,6 +30,7 @@ Patch7: wireshark-0007-cmakelists.patch
Patch8: wireshark-0008-pkgconfig.patch
Patch9: wireshark-0009-cve-2025-1492.patch
Patch10: wireshark-0010-cve-2025-13499.patch
Patch11: wireshark-0011-cve-2025-9817.patch
#install tshark together with wireshark GUI
Requires: %{name}-cli = %{epoch}:%{version}-%{release}
@ -282,6 +283,9 @@ fi
%{_libdir}/pkgconfig/%{name}.pc
%changelog
* Sun Jan 25 2026 Michal Ruprich <mruprich@redhat.com> - 1:4.4.2-6
- Resolves: RHEL-136919 - NULL Pointer Dereference in Wireshark (CVE-2025-9817)
* Mon Jan 19 2026 Michal Ruprich <mruprich@redhat.com> - 1:4.4.2-5
- Resolves: RHEL-130427 - Access of Uninitialized Pointer in Wireshark