Wireshark 4.6.7 and 4.4.17 Emergency Security Patch: 12 Critical CVEs Fixed

Published by

Wireshark has issued emergency security updates 4.6.7 and 4.4.17, addressing twelve critical vulnerabilities that could crash the application or leak sensitive memory. These flaws are largely triggered by maliciously crafted packet capture files and affect core protocol dissectors, with the most severe issue involving uninitialized memory reads in the BLF file parser. Network analysts and IT professionals are urged to upgrade immediately to protect against potential exploits, as many vulnerabilities can be triggered without a live network connection. In addition to security fixes, these updates also include standard maintenance improvements and underscore the importance of keeping network analysis tools patched



Wireshark 4.6.7 and 4.4.17 Emergency Security Patch: 12 Critical CVEs Fixed

Wireshark has released emergency security updates 4.6.7 and 4.4.17 to patch twelve critical vulnerabilities that can crash the application or leak sensitive memory. These flaws are primarily triggered by maliciously crafted packet capture files and affect core protocol dissectors across both maintenance branches. The most severe issue involves uninitialized memory reads in the BLF file parser, which could expose private system data to attackers. Network analysts and IT professionals are strongly urged to upgrade immediately to protect their infrastructure from file-based exploits.

Wireshark 4.6.7 and 4.4.17 Emergency Security Patch: 12 Critical CVEs Fixed @ Linux Compatible