Ask Your Question
0

OpenSSL Security Vulnarability

asked 2026-02-05 08:19:56 +0000

gbakis gravatar image

Dear Sir/Madam, 

We are using the latest version of Wireshark. Do the recently disclosed OpenSSL security vulnerabilities affect us? If they do, what would you recommend for us until a new update is released?

https://nvd.nist.gov/vuln/detail/CVE-... https://nvd.nist.gov/vuln/detail/CVE-...

edit retag flag offensive close merge delete
add a comment

2 Answers

Sort by » oldest newest most voted
0

answered 2026-02-05 13:56:12 +0000

johnthacker gravatar image

In addition to the answer above, Wireshark does not link against OpenSSL so OpenSSL vulnerabilities are not relevant. GnuTLS is used to read PKCS#12 files.

edit flag offensive delete link more
add a comment
0

answered 2026-02-05 10:04:44 +0000

hugo.vanderkooij gravatar image

Based on this assesment I don't see much of an issue here:

It is uncommon to accept untrusted PKCS#12 files in applications as they are usually used to store private keys which are trusted by definition. For these reasons, the issue was assessed as Low severity.

edit flag offensive delete link more
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2026-02-05 08:19:56 +0000

Seen: 46 times

Last updated: yesterday