CVE-2020-26421

Crash in USB HID protocol dissector and possibly other dissectors in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.2 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 28%
Affected Products (NVD)
VendorProductVersion
wiresharkwireshark
3.2.0 ≤
𝑥
≤ 3.2.8
wiresharkwireshark
3.4.0
debiandebian_linux
9.0
oraclezfs_storage_appliance_kit
8.8
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
wireshark
bookworm
4.0.11-1~deb12u1
fixed
bookworm (security)
4.0.11-1~deb12u1
fixed
bullseye
3.4.10-0+deb11u1
fixed
bullseye (security)
3.4.16-0+deb11u1
fixed
sid
4.4.1-1
fixed
trixie
4.4.0-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
wireshark
bionic
needed
focal
needed
groovy
ignored
hirsute
not-affected
impish
not-affected
jammy
not-affected
kinetic
not-affected
lunar
not-affected
mantic
not-affected
noble
not-affected
trusty
needed
xenial
needed
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libQt5Multimedia5
suse enterprise server 15 SP1
5.9.7-7.2.1
fixed
libqt5-qtmultimedia-devel
suse enterprise server 15 SP1
5.9.7-7.2.1
fixed
libqt5-qtmultimedia-private-headers-devel
suse enterprise server 15 SP1
5.9.7-7.2.1
fixed
libsbc1
suse enterprise desktop 15 SP2
1.3-3.2.1
fixed
suse enterprise desktop 15 SP3
1.3-3.2.1
fixed
suse enterprise desktop 15 SP4
1.3-3.2.1
fixed
suse enterprise desktop 15 SP5
1.3-3.2.1
fixed
suse enterprise desktop 15 SP6
1.3-3.2.1
fixed
suse enterprise desktop 15 SP7
1.3-3.2.1
fixed
suse enterprise sap 15 SP2
1.3-3.2.1
fixed
suse enterprise sap 15 SP3
1.3-3.2.1
fixed
suse enterprise sap 15 SP4
1.3-3.2.1
fixed
suse enterprise sap 15 SP5
1.3-3.2.1
fixed
suse enterprise sap 15 SP6
1.3-3.2.1
fixed
suse enterprise sap 15 SP7
1.3-3.2.1
fixed
suse enterprise server 15
1.3-3.2.1
fixed
suse enterprise server 15 SP1
1.3-3.2.1
fixed
suse enterprise server 15 SP2
1.3-3.2.1
fixed
suse enterprise server 15 SP3
1.3-3.2.1
fixed
suse enterprise server 15 SP4
1.3-3.2.1
fixed
suse enterprise server 15 SP5
1.3-3.2.1
fixed
suse enterprise server 15 SP6
1.3-3.2.1
fixed
suse enterprise server 15 SP7
1.3-3.2.1
fixed
libvirt
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-admin
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-client
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-config-network
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-config-nwfilter
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-interface
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-libxl
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-lxc
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-network
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-nodedev
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-nwfilter
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-qemu
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-secret
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-storage
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-storage-core
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-storage-disk
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-storage-iscsi
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-storage-logical
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-storage-mpath
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-storage-rbd
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-driver-storage-scsi
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-hooks
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-lxc
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-qemu
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-daemon-xen
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-devel
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-doc
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-libs
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-lock-sanlock
suse enterprise server 15
4.0.0-9.37.21
fixed
libvirt-nss
suse enterprise server 15
4.0.0-9.37.21
fixed
libwireshark14
suse enterprise desktop 15 SP2
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP3
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP2
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP3
3.4.5-3.53.1
fixed
suse enterprise server 15
3.4.5-3.53.1
fixed
suse enterprise server 15 SP1
3.4.5-3.53.1
fixed
suse enterprise server 15 SP2
3.4.5-3.53.1
fixed
suse enterprise server 15 SP3
3.4.5-3.53.1
fixed
libwireshark15
suse enterprise desktop 15 SP4
3.6.2-3.71.1
fixed
suse enterprise desktop 15 SP5
3.6.13-150000.3.89.1
fixed
suse enterprise desktop 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise sap 15 SP4
3.6.2-3.71.1
fixed
suse enterprise sap 15 SP5
3.6.13-150000.3.89.1
fixed
suse enterprise sap 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise server 15 SP4
3.6.2-3.71.1
fixed
suse enterprise server 15 SP5
3.6.13-150000.3.89.1
fixed
suse enterprise server 15 SP6
3.6.20-150600.16.5
fixed
libwireshark17
suse enterprise desktop 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise sap 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise server 15 SP7
4.2.11-150600.18.20.1
fixed
libwireshark9
suse enterprise sap 12 SP5
2.4.16-48.57.1
fixed
suse enterprise server 12 SP3
2.4.16-48.57.1
fixed
suse enterprise server 12 SP5
2.4.16-48.57.1
fixed
libwiretap11
suse enterprise desktop 15 SP2
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP3
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP2
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP3
3.4.5-3.53.1
fixed
suse enterprise server 15
3.4.5-3.53.1
fixed
suse enterprise server 15 SP1
3.4.5-3.53.1
fixed
suse enterprise server 15 SP2
3.4.5-3.53.1
fixed
suse enterprise server 15 SP3
3.4.5-3.53.1
fixed
libwiretap12
suse enterprise desktop 15 SP4
3.6.2-3.71.1
fixed
suse enterprise desktop 15 SP5
3.6.13-150000.3.89.1
fixed
suse enterprise desktop 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise sap 15 SP4
3.6.2-3.71.1
fixed
suse enterprise sap 15 SP5
3.6.13-150000.3.89.1
fixed
suse enterprise sap 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise server 15 SP4
3.6.2-3.71.1
fixed
suse enterprise server 15 SP5
3.6.13-150000.3.89.1
fixed
suse enterprise server 15 SP6
3.6.20-150600.16.5
fixed
libwiretap14
suse enterprise desktop 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise sap 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise server 15 SP7
4.2.11-150600.18.20.1
fixed
libwiretap7
suse enterprise sap 12 SP5
2.4.16-48.57.1
fixed
suse enterprise server 12 SP3
2.4.16-48.57.1
fixed
suse enterprise server 12 SP5
2.4.16-48.57.1
fixed
libwscodecs1
suse enterprise sap 12 SP5
2.4.16-48.57.1
fixed
suse enterprise server 12 SP3
2.4.16-48.57.1
fixed
suse enterprise server 12 SP5
2.4.16-48.57.1
fixed
libwsutil12
suse enterprise desktop 15 SP2
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP3
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP2
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP3
3.4.5-3.53.1
fixed
suse enterprise server 15
3.4.5-3.53.1
fixed
suse enterprise server 15 SP1
3.4.5-3.53.1
fixed
suse enterprise server 15 SP2
3.4.5-3.53.1
fixed
suse enterprise server 15 SP3
3.4.5-3.53.1
fixed
libwsutil13
suse enterprise desktop 15 SP4
3.6.2-3.71.1
fixed
suse enterprise desktop 15 SP5
3.6.13-150000.3.89.1
fixed
suse enterprise desktop 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise sap 15 SP4
3.6.2-3.71.1
fixed
suse enterprise sap 15 SP5
3.6.13-150000.3.89.1
fixed
suse enterprise sap 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise server 15 SP4
3.6.2-3.71.1
fixed
suse enterprise server 15 SP5
3.6.13-150000.3.89.1
fixed
suse enterprise server 15 SP6
3.6.20-150600.16.5
fixed
libwsutil15
suse enterprise desktop 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise sap 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise server 15 SP7
4.2.11-150600.18.20.1
fixed
libwsutil8
suse enterprise sap 12 SP5
2.4.16-48.57.1
fixed
suse enterprise server 12 SP3
2.4.16-48.57.1
fixed
suse enterprise server 12 SP5
2.4.16-48.57.1
fixed
sbc-devel
suse enterprise desktop 15 SP2
1.3-3.2.1
fixed
suse enterprise desktop 15 SP3
1.3-3.2.1
fixed
suse enterprise desktop 15 SP4
1.3-3.2.1
fixed
suse enterprise desktop 15 SP5
1.3-3.2.1
fixed
suse enterprise desktop 15 SP6
1.3-3.2.1
fixed
suse enterprise desktop 15 SP7
1.3-3.2.1
fixed
suse enterprise sap 15 SP2
1.3-3.2.1
fixed
suse enterprise sap 15 SP3
1.3-3.2.1
fixed
suse enterprise sap 15 SP4
1.3-3.2.1
fixed
suse enterprise sap 15 SP5
1.3-3.2.1
fixed
suse enterprise sap 15 SP6
1.3-3.2.1
fixed
suse enterprise sap 15 SP7
1.3-3.2.1
fixed
suse enterprise server 15
1.3-3.2.1
fixed
suse enterprise server 15 SP1
1.3-3.2.1
fixed
suse enterprise server 15 SP2
1.3-3.2.1
fixed
suse enterprise server 15 SP3
1.3-3.2.1
fixed
suse enterprise server 15 SP4
1.3-3.2.1
fixed
suse enterprise server 15 SP5
1.3-3.2.1
fixed
suse enterprise server 15 SP6
1.3-3.2.1
fixed
suse enterprise server 15 SP7
1.3-3.2.1
fixed
wireshark
suse enterprise desktop 15 SP2
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP3
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP4
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP5
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise desktop 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise sap 12 SP5
2.4.16-48.57.1
fixed
suse enterprise sap 15 SP2
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP3
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP4
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP5
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise sap 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise server 12 SP3
2.4.16-48.57.1
fixed
suse enterprise server 12 SP5
2.4.16-48.57.1
fixed
suse enterprise server 15
3.4.5-3.53.1
fixed
suse enterprise server 15 SP1
3.4.5-3.53.1
fixed
suse enterprise server 15 SP2
3.4.5-3.53.1
fixed
suse enterprise server 15 SP3
3.4.5-3.53.1
fixed
suse enterprise server 15 SP4
3.4.5-3.53.1
fixed
suse enterprise server 15 SP5
3.4.5-3.53.1
fixed
suse enterprise server 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise server 15 SP7
4.2.11-150600.18.20.1
fixed
wireshark-devel
suse enterprise desktop 15 SP2
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP3
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP4
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP5
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise desktop 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise sap 15 SP2
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP3
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP4
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP5
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise sap 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise server 15
3.4.5-3.53.1
fixed
suse enterprise server 15 SP1
3.4.5-3.53.1
fixed
suse enterprise server 15 SP2
3.4.5-3.53.1
fixed
suse enterprise server 15 SP3
3.4.5-3.53.1
fixed
suse enterprise server 15 SP4
3.4.5-3.53.1
fixed
suse enterprise server 15 SP5
3.4.5-3.53.1
fixed
suse enterprise server 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise server 15 SP7
4.2.11-150600.18.20.1
fixed
wireshark-gtk
suse enterprise sap 12 SP5
2.4.16-48.57.1
fixed
suse enterprise server 12 SP3
2.4.16-48.57.1
fixed
suse enterprise server 12 SP5
2.4.16-48.57.1
fixed
wireshark-ui-qt
suse enterprise desktop 15 SP2
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP3
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP4
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP5
3.4.5-3.53.1
fixed
suse enterprise desktop 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise desktop 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise sap 15 SP2
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP3
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP4
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP5
3.4.5-3.53.1
fixed
suse enterprise sap 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise sap 15 SP7
4.2.11-150600.18.20.1
fixed
suse enterprise server 15
3.4.5-3.53.1
fixed
suse enterprise server 15 SP1
3.4.5-3.53.1
fixed
suse enterprise server 15 SP2
3.4.5-3.53.1
fixed
suse enterprise server 15 SP3
3.4.5-3.53.1
fixed
suse enterprise server 15 SP4
3.4.5-3.53.1
fixed
suse enterprise server 15 SP5
3.4.5-3.53.1
fixed
suse enterprise server 15 SP6
3.6.20-150600.16.5
fixed
suse enterprise server 15 SP7
4.2.11-150600.18.20.1
fixed
Common Weakness Enumeration
References
https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-26421.json
https://gitlab.com/wireshark/wireshark/-/issues/16958
https://lists.debian.org/debian-lts-announce/2021/02/msg00008.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M75HYXU36SP6GHIDPHNZGJKEO6TX4C4Y/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YHWDZPWQJMLK64VFDWJC5SEGPNH6Y72Z/
https://security.gentoo.org/glsa/202101-12
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.wireshark.org/security/wnpa-sec-2020-17.html
https://gitlab.com/gitlab-org/cves/-/blob/master/2020/CVE-2020-26421.json
https://gitlab.com/wireshark/wireshark/-/issues/16958
https://lists.debian.org/debian-lts-announce/2021/02/msg00008.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M75HYXU36SP6GHIDPHNZGJKEO6TX4C4Y/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YHWDZPWQJMLK64VFDWJC5SEGPNH6Y72Z/
https://security.gentoo.org/glsa/202101-12
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.wireshark.org/security/wnpa-sec-2020-17.html