Security update for wireshark SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2026:20151-1 Final 1 1 2026-02-02T12:56:02Z current 2026-02-02T12:56:02Z 2026-02-02T12:56:02Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for wireshark This update for wireshark fixes the following issues: Update to Wireshark 4.4.13: - CVE-2025-11626: MONGO dissector infinite loop (bsc#1251933). - CVE-2025-13499: Kafka dissector crash (bsc#1254108). - CVE-2025-13945: HTTP3 dissector crash (bsc#1254471). - CVE-2025-13946: MEGACO dissector infinite loop (bsc#1254472). - CVE-2025-9817: SSH dissector crash (bsc#1249090). - CVE-2026-0959: IEEE 802.11 dissector crash (bsc#1256734). - CVE-2026-0961: BLF file parser crash (bsc#1256738). - CVE-2026-0962: SOME/IP-SD dissector crash (bsc#1256739). Full changelog: https://www.wireshark.org/docs/relnotes/wireshark-4.4.13.html The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Leap-16.0-236 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1249090 SUSE Bug 1249090 https://bugzilla.suse.com/1251933 SUSE Bug 1251933 https://bugzilla.suse.com/1254108 SUSE Bug 1254108 https://bugzilla.suse.com/1254471 SUSE Bug 1254471 https://bugzilla.suse.com/1254472 SUSE Bug 1254472 https://bugzilla.suse.com/1256734 SUSE Bug 1256734 https://bugzilla.suse.com/1256738 SUSE Bug 1256738 https://bugzilla.suse.com/1256739 SUSE Bug 1256739 https://www.suse.com/security/cve/CVE-2025-11626/ SUSE CVE CVE-2025-11626 page https://www.suse.com/security/cve/CVE-2025-13499/ SUSE CVE CVE-2025-13499 page https://www.suse.com/security/cve/CVE-2025-13945/ SUSE CVE CVE-2025-13945 page https://www.suse.com/security/cve/CVE-2025-13946/ SUSE CVE CVE-2025-13946 page https://www.suse.com/security/cve/CVE-2025-9817/ SUSE CVE CVE-2025-9817 page https://www.suse.com/security/cve/CVE-2026-0959/ SUSE CVE CVE-2026-0959 page https://www.suse.com/security/cve/CVE-2026-0961/ SUSE CVE CVE-2026-0961 page https://www.suse.com/security/cve/CVE-2026-0962/ SUSE CVE CVE-2026-0962 page openSUSE Leap 16.0 libwireshark18-4.4.13-160000.1.1 libwiretap15-4.4.13-160000.1.1 libwsutil16-4.4.13-160000.1.1 wireshark-4.4.13-160000.1.1 wireshark-devel-4.4.13-160000.1.1 wireshark-ui-qt-4.4.13-160000.1.1 libwireshark18-4.4.13-160000.1.1 as a component of openSUSE Leap 16.0 libwiretap15-4.4.13-160000.1.1 as a component of openSUSE Leap 16.0 libwsutil16-4.4.13-160000.1.1 as a component of openSUSE Leap 16.0 wireshark-4.4.13-160000.1.1 as a component of openSUSE Leap 16.0 wireshark-devel-4.4.13-160000.1.1 as a component of openSUSE Leap 16.0 wireshark-ui-qt-4.4.13-160000.1.1 as a component of openSUSE Leap 16.0 MONGO dissector infinite loop in Wireshark 4.4.0 to 4.4.9 and 4.2.0 to 4.2.13 allows denial of service CVE-2025-11626 openSUSE Leap 16.0:libwireshark18-4.4.13-160000.1.1 openSUSE Leap 16.0:libwiretap15-4.4.13-160000.1.1 openSUSE Leap 16.0:libwsutil16-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-devel-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-ui-qt-4.4.13-160000.1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-11626.html CVE-2025-11626 https://bugzilla.suse.com/1251933 SUSE Bug 1251933 Kafka dissector crash in Wireshark 4.6.0 and 4.4.0 to 4.4.10 allows denial of service CVE-2025-13499 openSUSE Leap 16.0:libwireshark18-4.4.13-160000.1.1 openSUSE Leap 16.0:libwiretap15-4.4.13-160000.1.1 openSUSE Leap 16.0:libwsutil16-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-devel-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-ui-qt-4.4.13-160000.1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-13499.html CVE-2025-13499 https://bugzilla.suse.com/1254108 SUSE Bug 1254108 HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service CVE-2025-13945 openSUSE Leap 16.0:libwireshark18-4.4.13-160000.1.1 openSUSE Leap 16.0:libwiretap15-4.4.13-160000.1.1 openSUSE Leap 16.0:libwsutil16-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-devel-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-ui-qt-4.4.13-160000.1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-13945.html CVE-2025-13945 https://bugzilla.suse.com/1254471 SUSE Bug 1254471 MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service CVE-2025-13946 openSUSE Leap 16.0:libwireshark18-4.4.13-160000.1.1 openSUSE Leap 16.0:libwiretap15-4.4.13-160000.1.1 openSUSE Leap 16.0:libwsutil16-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-devel-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-ui-qt-4.4.13-160000.1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-13946.html CVE-2025-13946 https://bugzilla.suse.com/1254472 SUSE Bug 1254472 SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service CVE-2025-9817 openSUSE Leap 16.0:libwireshark18-4.4.13-160000.1.1 openSUSE Leap 16.0:libwiretap15-4.4.13-160000.1.1 openSUSE Leap 16.0:libwsutil16-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-devel-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-ui-qt-4.4.13-160000.1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-9817.html CVE-2025-9817 https://bugzilla.suse.com/1249090 SUSE Bug 1249090 IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service CVE-2026-0959 openSUSE Leap 16.0:libwireshark18-4.4.13-160000.1.1 openSUSE Leap 16.0:libwiretap15-4.4.13-160000.1.1 openSUSE Leap 16.0:libwsutil16-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-devel-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-ui-qt-4.4.13-160000.1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-0959.html CVE-2026-0959 https://bugzilla.suse.com/1256734 SUSE Bug 1256734 BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service CVE-2026-0961 openSUSE Leap 16.0:libwireshark18-4.4.13-160000.1.1 openSUSE Leap 16.0:libwiretap15-4.4.13-160000.1.1 openSUSE Leap 16.0:libwsutil16-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-devel-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-ui-qt-4.4.13-160000.1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-0961.html CVE-2026-0961 https://bugzilla.suse.com/1256738 SUSE Bug 1256738 SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service CVE-2026-0962 openSUSE Leap 16.0:libwireshark18-4.4.13-160000.1.1 openSUSE Leap 16.0:libwiretap15-4.4.13-160000.1.1 openSUSE Leap 16.0:libwsutil16-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-devel-4.4.13-160000.1.1 openSUSE Leap 16.0:wireshark-ui-qt-4.4.13-160000.1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2026-0962.html CVE-2026-0962 https://bugzilla.suse.com/1256739 SUSE Bug 1256739