Security update for wireshark

Announcement ID:	SUSE-SU-2026:1169-1
Release Date:	2026-04-02T08:29:33Z
Rating:	important
References:	bsc#1231475 bsc#1231476 bsc#1233593 bsc#1233594 bsc#1237414 bsc#1244081 bsc#1249090 bsc#1254108 bsc#1254262 bsc#1254471 bsc#1254472 bsc#1256734 bsc#1256736 bsc#1256738 bsc#1256739 bsc#1258907 bsc#1258908 bsc#1258909 jsc#PED-15400
Cross-References:	CVE-2024-11595 CVE-2024-11596 CVE-2024-9780 CVE-2024-9781 CVE-2025-13499 CVE-2025-13674 CVE-2025-13945 CVE-2025-13946 CVE-2025-1492 CVE-2025-5601 CVE-2025-9817 CVE-2026-0959 CVE-2026-0960 CVE-2026-0961 CVE-2026-0962 CVE-2026-3201 CVE-2026-3202 CVE-2026-3203
CVSS scores:	CVE-2024-11595 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2024-11595 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2024-11595 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2024-11596 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2024-11596 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2024-11596 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2024-9780 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2024-9780 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2024-9780 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2024-9781 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2024-9781 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2024-9781 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-13499 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-13499 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H CVE-2025-13499 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-13499 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-13674 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-13674 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-13674 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-13945 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-13945 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-13946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-13946 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-1492 ( SUSE ): 7.1 CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-1492 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-1492 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-1492 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-5601 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H CVE-2025-5601 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-5601 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-9817 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2025-9817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2025-9817 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-9817 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-0959 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-0959 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0959 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0959 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0960 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-0960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0960 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0960 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0961 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-0961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0961 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0961 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0962 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N CVE-2026-0962 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0962 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-0962 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-3201 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-3201 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2026-3201 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-3201 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-3202 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-3202 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2026-3202 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-3202 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2026-3203 ( SUSE ): 4.8 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N CVE-2026-3203 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2026-3203 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2026-3203 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:	Basesystem Module 15-SP7 Desktop Applications Module 15-SP7 Server Applications Module 15-SP7 SUSE Linux Enterprise Desktop 15 SP7 SUSE Linux Enterprise Real Time 15 SP7 SUSE Linux Enterprise Server 15 SP7 SUSE Linux Enterprise Server for SAP Applications 15 SP7

An update that solves 18 vulnerabilities and contains one feature can now be installed.

Description:

This update for wireshark fixes the following issues:

Update Wireshark to version 4.6.4 (jsc#PED-15400).

• CVE-2024-9780: ITS dissector crash (bsc#1231475).
• CVE-2024-9781: AppleTalk and RELOAD Framing dissector crash (bsc#1231476).
• CVE-2024-11595: Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark (bsc#1233594).
• CVE-2024-11596: Buffer Over-read in Wireshark (bsc#1233593).
• CVE-2025-1492: Uncontrolled Recursion in Wireshark (bsc#1237414).
• CVE-2025-5601: Column handling crashes in Wireshark allows denial of service (bsc#1244081).
• CVE-2025-9817: NULL Pointer Dereference in ssh dissector (bsc#1249090).
• CVE-2025-13499: a malformed packet can lead to a Kafka dissector crash (bsc#1254108).
• CVE-2025-13674: injecting a malformed packet can cause a crash (bsc#1254262).
• CVE-2025-13945: HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service (bsc#1254471).
• CVE-2025-13946: MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service (bsc#1254472).
• CVE-2026-0959: denial of service via IEEE 802.11 protocol dissector crash (bsc#1256734).
• CVE-2026-0960: denial of Service via HTTP3 protocol dissector infinite loop (bsc#1256736).
• CVE-2026-0961: denial of Service vulnerability in BLF file parser (bsc#1256738).
• CVE-2026-0962: denial of Service via SOME/IP-SD protocol dissector crash (bsc#1256739).
• CVE-2026-3201: missing limit checks in USB HID protocol dissector's parse_report_descriptor function can lead to memory exhaustion (bsc#1258907).
• CVE-2026-3202: missing checks in NTS-KE protocol dissector can lead to crash (bsc#1258908).
• CVE-2026-3203: missing length checks in the RF4CE Profile protocol dissector can lead to illegal memory access and crash (bsc#1258909).

Also libvirt was rebuilt against wireshark for the libvirt plugin.

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• Basesystem Module 15-SP7
  zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-1169=1
• Desktop Applications Module 15-SP7
  zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-1169=1
• Server Applications Module 15-SP7
  zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP7-2026-1169=1

Package List:

• Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64)
  • libwsutil17-debuginfo-4.6.4-150700.21.8.1
  • wireshark-debugsource-4.6.4-150700.21.8.1
  • libwiretap16-debuginfo-4.6.4-150700.21.8.1
  • wireshark-4.6.4-150700.21.8.1
  • libwiretap16-4.6.4-150700.21.8.1
  • libvirt-libs-debuginfo-11.0.0-150700.4.19.1
  • libwireshark19-4.6.4-150700.21.8.1
  • libvirt-libs-11.0.0-150700.4.19.1
  • libvirt-debugsource-11.0.0-150700.4.19.1
  • wireshark-debuginfo-4.6.4-150700.21.8.1
  • libwireshark19-debuginfo-4.6.4-150700.21.8.1
  • libwsutil17-4.6.4-150700.21.8.1
• Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64)
  • wireshark-ui-qt-4.6.4-150700.21.8.1
  • wireshark-debuginfo-4.6.4-150700.21.8.1
  • wireshark-ui-qt-debuginfo-4.6.4-150700.21.8.1
  • wireshark-devel-4.6.4-150700.21.8.1
  • wireshark-debugsource-4.6.4-150700.21.8.1
• Server Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64)
  • libvirt-daemon-driver-storage-core-11.0.0-150700.4.19.1
  • libvirt-daemon-config-nwfilter-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-nwfilter-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-proxy-11.0.0-150700.4.19.1
  • libvirt-daemon-lock-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-mpath-11.0.0-150700.4.19.1
  • libvirt-nss-11.0.0-150700.4.19.1
  • libvirt-client-11.0.0-150700.4.19.1
  • libvirt-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-secret-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-core-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-lock-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-iscsi-direct-11.0.0-150700.4.19.1
  • libvirt-daemon-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-nodedev-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-secret-11.0.0-150700.4.19.1
  • libvirt-nss-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-qemu-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-disk-debuginfo-11.0.0-150700.4.19.1
  • libvirt-debugsource-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-iscsi-direct-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-plugin-lockd-11.0.0-150700.4.19.1
  • libvirt-daemon-log-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-logical-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-nwfilter-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-scsi-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-mpath-debuginfo-11.0.0-150700.4.19.1
  • libvirt-devel-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-network-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-config-network-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-interface-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-plugin-lockd-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-disk-11.0.0-150700.4.19.1
  • libvirt-daemon-plugin-sanlock-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-nodedev-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-logical-debuginfo-11.0.0-150700.4.19.1
  • libvirt-client-qemu-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-scsi-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-iscsi-11.0.0-150700.4.19.1
  • libvirt-daemon-qemu-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-interface-11.0.0-150700.4.19.1
  • libvirt-daemon-common-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-iscsi-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-proxy-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-network-11.0.0-150700.4.19.1
  • libvirt-daemon-hooks-11.0.0-150700.4.19.1
  • libvirt-daemon-log-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-11.0.0-150700.4.19.1
  • libvirt-daemon-common-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-qemu-debuginfo-11.0.0-150700.4.19.1
  • libvirt-client-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-plugin-sanlock-11.0.0-150700.4.19.1
  • libvirt-daemon-11.0.0-150700.4.19.1
• Server Applications Module 15-SP7 (aarch64 x86_64)
  • libvirt-daemon-driver-storage-rbd-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-storage-rbd-debuginfo-11.0.0-150700.4.19.1
• Server Applications Module 15-SP7 (noarch)
  • libvirt-doc-11.0.0-150700.4.19.1
• Server Applications Module 15-SP7 (x86_64)
  • libvirt-daemon-xen-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-libxl-debuginfo-11.0.0-150700.4.19.1
  • libvirt-daemon-driver-libxl-11.0.0-150700.4.19.1

References:

• https://www.suse.com/security/cve/CVE-2024-11595.html
• https://www.suse.com/security/cve/CVE-2024-11596.html
• https://www.suse.com/security/cve/CVE-2024-9780.html
• https://www.suse.com/security/cve/CVE-2024-9781.html
• https://www.suse.com/security/cve/CVE-2025-13499.html
• https://www.suse.com/security/cve/CVE-2025-13674.html
• https://www.suse.com/security/cve/CVE-2025-13945.html
• https://www.suse.com/security/cve/CVE-2025-13946.html
• https://www.suse.com/security/cve/CVE-2025-1492.html
• https://www.suse.com/security/cve/CVE-2025-5601.html
• https://www.suse.com/security/cve/CVE-2025-9817.html
• https://www.suse.com/security/cve/CVE-2026-0959.html
• https://www.suse.com/security/cve/CVE-2026-0960.html
• https://www.suse.com/security/cve/CVE-2026-0961.html
• https://www.suse.com/security/cve/CVE-2026-0962.html
• https://www.suse.com/security/cve/CVE-2026-3201.html
• https://www.suse.com/security/cve/CVE-2026-3202.html
• https://www.suse.com/security/cve/CVE-2026-3203.html
• https://bugzilla.suse.com/show_bug.cgi?id=1231475
• https://bugzilla.suse.com/show_bug.cgi?id=1231476
• https://bugzilla.suse.com/show_bug.cgi?id=1233593
• https://bugzilla.suse.com/show_bug.cgi?id=1233594
• https://bugzilla.suse.com/show_bug.cgi?id=1237414
• https://bugzilla.suse.com/show_bug.cgi?id=1244081
• https://bugzilla.suse.com/show_bug.cgi?id=1249090
• https://bugzilla.suse.com/show_bug.cgi?id=1254108
• https://bugzilla.suse.com/show_bug.cgi?id=1254262
• https://bugzilla.suse.com/show_bug.cgi?id=1254471
• https://bugzilla.suse.com/show_bug.cgi?id=1254472
• https://bugzilla.suse.com/show_bug.cgi?id=1256734
• https://bugzilla.suse.com/show_bug.cgi?id=1256736
• https://bugzilla.suse.com/show_bug.cgi?id=1256738
• https://bugzilla.suse.com/show_bug.cgi?id=1256739
• https://bugzilla.suse.com/show_bug.cgi?id=1258907
• https://bugzilla.suse.com/show_bug.cgi?id=1258908
• https://bugzilla.suse.com/show_bug.cgi?id=1258909
• https://jira.suse.com/browse/PED-15400