{"id":"CVE-2020-25862","details":"In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by changing the handling of the invalid 0xFFFF checksum.","modified":"2026-05-15T09:15:19.623407Z","published":"2020-10-06T15:15:15.273Z","related":["SUSE-SU-2020:3166-1","openSUSE-SU-2020:1878-1","openSUSE-SU-2020:1882-1","openSUSE-SU-2024:11513-1"],"database_specific":{"unresolved_ranges":[{"cpe":"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"last_affected":"9.0"}]},{"cpe":"cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"last_affected":"31"}]},{"cpe":"cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"last_affected":"33"}]},{"cpe":"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"last_affected":"15.1"}]},{"cpe":"cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"last_affected":"15.2"}]},{"cpe":"cpe:2.3:o:oracle:zfs_storage_appliance_firmware:8.8:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"last_affected":"8.8"}]}]},"references":[{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4DQHPKZFQ7W3X34RYN3FWFYCFJD4FXJW/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6IGRYKW4XLR44YDWTAH547ODYYBYPB2D/"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZUHMK5HYTUUDXA64T2TAMAFMYV674QBW/"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00035.html"},{"type":"ADVISORY","url":"http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00038.html"},{"type":"ADVISORY","url":"https://lists.debian.org/debian-lts-announce/2021/02/msg00008.html"},{"type":"ADVISORY","url":"https://www.wireshark.org/security/wnpa-sec-2020-12.html"},{"type":"REPORT","url":"https://gitlab.com/wireshark/wireshark/-/issues/16816"},{"type":"FIX","url":"https://gitlab.com/wireshark/wireshark/-/commit/7f3fe6164a68b76d9988c4253b24d43f498f1753"},{"type":"FIX","url":"https://www.oracle.com/security-alerts/cpujan2021.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/wireshark/wireshark","events":[{"introduced":"c7239f0201292253817c7c4c9a394a47113ca55c"},{"last_affected":"cd6bab019d9bd36dc8672077d3cdb9372a5f6c7a"},{"introduced":"937e33de60bcfcd6f68e7250e5e6914ae1d1e1e4"},{"last_affected":"643e3b0f718685b3fa7008a0c5c4707daf63ca99"},{"introduced":"e0ed4cfa3d72110257da54c26ad3a28d282ef454"},{"last_affected":"4f9257fb8ccce92b519d87c4cc905107ae09b5e9"},{"introduced":"0"},{"last_affected":"fb2c25aa9c1b4a6f7e5a8c92a5c66503702553ac"}],"database_specific":{"cpe":["cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*","cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*"],"source":"CPE_FIELD","extracted_events":[{"introduced":"2.6.0"},{"last_affected":"2.6.20"},{"introduced":"3.0.0"},{"last_affected":"3.0.13"},{"introduced":"3.2.0"},{"last_affected":"3.2.6"},{"introduced":"0"},{"last_affected":"32"}]}}],"versions":["wireshark-2.6.20","v2.6.20","v2.6.20rc0","wireshark-2.6.19","v2.6.19","wireshark-3.0.13","v3.0.13","wireshark-3.2.6","v3.2.6","v3.0.13rc0","v2.6.19rc0","v3.2.6rc0","wireshark-2.6.18","v2.6.18","wireshark-3.0.12","v3.0.12","wireshark-3.2.5","v3.2.5","v2.6.18rc0","v3.0.12rc0","v3.2.5rc0","wireshark-2.6.17","v2.6.17","wireshark-3.0.11","v3.0.11","wireshark-3.2.4","v3.2.4","v2.6.17rc0","v3.0.11rc0","v3.2.4rc0","wireshark-2.6.16","v2.6.16","wireshark-3.0.10","v3.0.10","wireshark-3.2.3","v3.2.3","v2.6.16rc0","v3.0.10rc0","v3.2.3rc0","wireshark-2.6.15","v2.6.15","wireshark-3.0.9","v3.0.9","wireshark-3.2.2","v3.2.2","v2.6.15rc0","v3.0.9rc0","v3.2.2rc0","wireshark-2.6.14","v2.6.14","wireshark-3.0.8","v3.0.8","wireshark-3.2.1","v3.2.1","v3.2.1rc0","wireshark-3.2.0","v3.2.0","v2.6.14rc0","v3.0.8rc0","wireshark-2.6.13","v2.6.13","wireshark-3.0.7","v3.0.7","v3.0.7rc0","v2.6.13rc0","wireshark-2.6.12","v2.6.12","wireshark-3.0.6","v3.0.6","v3.0.6rc0","wireshark-3.0.5","v3.0.5","v2.6.12rc0","v3.0.5rc0","wireshark-2.6.11","v2.6.11","wireshark-3.0.4","v3.0.4","v2.6.11rc0","v3.0.4rc0","wireshark-2.6.10","v2.6.10","wireshark-3.0.3","v3.0.3","v2.6.10rc0","v3.0.3rc0","wireshark-2.6.9","v2.6.9","wireshark-3.0.2","v3.0.2","v2.6.9rc0","v3.0.2rc0","wireshark-2.6.8","v2.6.8","wireshark-3.0.1","v3.0.1","v3.0.1rc0","wireshark-3.0.0","v3.0.0","v2.6.8rc0","wireshark-2.6.7","v2.6.7","v2.6.7rc0","wireshark-2.6.6","v2.6.6","v2.6.6rc0","wireshark-2.6.5","v2.6.5","v2.6.5rc0","wireshark-2.6.4","v2.6.4","v2.6.4rc0","wireshark-2.6.3","v2.6.3","v2.6.3rc0","wireshark-2.6.2","v2.6.2","v2.6.2rc0","wireshark-2.6.1","v2.6.1","v2.6.1rc0","wireshark-2.6.0","v2.6.0","backups/win32-native@18706","start","ethereal-0.3.15","ethereal-0-3-15","backups/ethereal@18706"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-25862.json"}},{"ranges":[{"type":"GIT","repo":"https://gitlab.com/wireshark/wireshark","events":[{"introduced":"0"},{"fixed":"7f3fe6164a68b76d9988c4253b24d43f498f1753"}],"database_specific":{"source":"REFERENCES"}}],"versions":["v3.0.14rc0","wireshark-3.0.13","v3.0.13","v3.0.13rc0","wireshark-3.0.12","v3.0.12","v3.0.12rc0","wireshark-3.0.11","v3.0.11","v3.0.11rc0","wireshark-3.0.10","v3.0.10","v3.0.10rc0","wireshark-3.0.9","v3.0.9","v3.0.9rc0","wireshark-3.0.8","v3.0.8","v3.0.8rc0","wireshark-3.0.7","v3.0.7","v3.0.7rc0","wireshark-3.0.6","v3.0.6","v3.0.6rc0","wireshark-3.0.5","v3.0.5","v3.0.5rc0","wireshark-3.0.4","v3.0.4","v3.0.4rc0","wireshark-3.0.3","v3.0.3","v3.0.3rc0","wireshark-3.0.2","v3.0.2","v3.0.2rc0","wireshark-3.0.1","v3.0.1","v3.0.1rc0","wireshark-3.0.0","v3.0.0","v3.0.0rc2","v3.0.0rc1","v3.0.0rc0","v2.9.1rc0","v2.9.0","v2.9.0rc0","v2.5.2rc0","v2.5.1","v2.5.1rc0","wireshark-2.5.0","v2.5.0","v2.5.0rc0","v2.3.0rc0","v2.1.2rc0","wireshark-2.1.1","v2.1.1","v2.1.1rc0","wireshark-2.1.0","v2.1.0","v2.1.0rc0","v1.99.10rc0","wireshark-1.99.9","v1.99.9","v1.99.9rc0","wireshark-1.99.8","v1.99.8","v1.99.8rc0","wireshark-1.99.7","v1.99.7","v1.99.7rc0","wireshark-1.99.6","v1.99.6","v1.99.6rc0","wireshark-1.99.5","v1.99.5","v1.99.5rc0","wireshark-1.99.4","v1.99.4","v1.99.4rc0","wireshark-1.99.3","v1.99.3","v1.99.3rc0","wireshark-1.99.2","v1.99.2","v1.99.2rc0","wireshark-1.99.1","v1.99.1","v1.99.1rc0","wireshark-1.99.0","v1.99.0","v1.99.0-rc1","v1.11.4-rc1","wireshark-1.11.3","v1.11.3","v1.11.3-rc1","v1.11.2","v1.11.2-rc1","v1.11.1","v1.11.1-rc1","v1.11.0","v1.11.0-rc1","start","ethereal-0.3.15","ethereal-0-3-15","backups/ethereal@18706"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-25862.json","vanir_signatures_modified":"2026-05-15T09:15:19Z","vanir_signatures":[{"id":"CVE-2020-25862-7975778d","signature_type":"Line","deprecated":false,"source":"https://gitlab.com/wireshark/wireshark@7f3fe6164a68b76d9988c4253b24d43f498f1753","target":{"file":"epan/dissectors/packet-tcp.c"},"signature_version":"v1","digest":{"threshold":0.9,"line_hashes":["242302087000154554284775128768973085051","185008706844172963313874610184916204300","294017873334335896332854535638490301366","184037773829120508062932782996856580214"]}}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"}]}