From 4b4e46b8279962c547210cd25171c730efdef5bc Mon Sep 17 00:00:00 2001 From: Michal Ruprich Date: Sun, 25 Jan 2026 15:23:01 +0100 Subject: [PATCH] Resolves: RHEL-136919 - NULL Pointer Dereference in Wireshark (CVE-2025-9817) --- wireshark-0011-cve-2025-9817.patch | 32 ++++++++++++++++++++++++++++++ wireshark.spec | 6 +++++- 2 files changed, 37 insertions(+), 1 deletion(-) create mode 100644 wireshark-0011-cve-2025-9817.patch diff --git a/wireshark-0011-cve-2025-9817.patch b/wireshark-0011-cve-2025-9817.patch new file mode 100644 index 0000000..da082fe --- /dev/null +++ b/wireshark-0011-cve-2025-9817.patch @@ -0,0 +1,32 @@ +From d3db4696f7286b669a04ebfa49a0c5811a1da63f Mon Sep 17 00:00:00 2001 +From: John Thacker +Date: Sat, 26 Jul 2025 11:48:36 +0000 +Subject: [PATCH] ssh: Add a null check + +Fix #20642 + + +(cherry picked from commit 39daba5e247ea495f88b0be82f0b7ebbdbf50fba) + +Co-authored-by: John Thacker +--- + epan/dissectors/packet-ssh.c | 4 ++++ + 1 file changed, 4 insertions(+) + +diff --git a/epan/dissectors/packet-ssh.c b/epan/dissectors/packet-ssh.c +index 11c6b597f2b..be0b8e71c9d 100644 +--- a/epan/dissectors/packet-ssh.c ++++ b/epan/dissectors/packet-ssh.c +@@ -2456,6 +2456,10 @@ ssh_kex_shared_secret(int kex_type, ssh_bignum *pub, ssh_bignum *priv, ssh_bignu + } + + if(kex_type==SSH_KEX_DH_GEX){ ++ if (modulo == NULL) { ++ ws_debug("Missing group modulo"); ++ return NULL; ++ } + gcry_mpi_t b = NULL; + gcry_mpi_scan(&b, GCRYMPI_FMT_USG, pub->data, pub->length, NULL); + gcry_mpi_t d = NULL, e = NULL, m = NULL; +-- +GitLab diff --git a/wireshark.spec b/wireshark.spec index 7e68aec..55ff814 100644 --- a/wireshark.spec +++ b/wireshark.spec @@ -6,7 +6,7 @@ Summary: Network traffic analyzer Name: wireshark Version: 4.4.2 -Release: 5%{?dist} +Release: 6%{?dist} Epoch: 1 License: BSD-1-Clause AND BSD-2-Clause AND BSD-3-Clause AND MIT AND GPL-2.0-or-later AND LGPL-2.0-or-later AND Zlib AND ISC AND (BSD-3-Clause OR GPL-2.0-only) AND (GPL-2.0-or-later AND Zlib) Url: http://www.wireshark.org/ @@ -30,6 +30,7 @@ Patch7: wireshark-0007-cmakelists.patch Patch8: wireshark-0008-pkgconfig.patch Patch9: wireshark-0009-cve-2025-1492.patch Patch10: wireshark-0010-cve-2025-13499.patch +Patch11: wireshark-0011-cve-2025-9817.patch #install tshark together with wireshark GUI Requires: %{name}-cli = %{epoch}:%{version}-%{release} @@ -282,6 +283,9 @@ fi %{_libdir}/pkgconfig/%{name}.pc %changelog +* Sun Jan 25 2026 Michal Ruprich - 1:4.4.2-6 +- Resolves: RHEL-136919 - NULL Pointer Dereference in Wireshark (CVE-2025-9817) + * Mon Jan 19 2026 Michal Ruprich - 1:4.4.2-5 - Resolves: RHEL-130427 - Access of Uninitialized Pointer in Wireshark