Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-25863

Опубликовано: 06 окт. 2020
Источник: debian

Описание

In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
wiresharkfixed3.2.7-1package
wiresharkfixed2.6.20-0+deb10u1busterpackage

Примечания

  • https://www.wireshark.org/security/wnpa-sec-2020-11.html

  • https://gitlab.com/wireshark/wireshark/-/issues/16741

Связанные уязвимости

ubuntu логотип

CVE-2020-25863

CVSS3: 7.5
ubuntu
больше 5 лет назад

In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts.

redhat логотип

CVE-2020-25863

CVSS3: 7.5
redhat
больше 5 лет назад

In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts.

nvd логотип

CVE-2020-25863

CVSS3: 7.5
nvd
больше 5 лет назад

In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts.

github логотип

GHSA-h5f3-p3hm-f3rj

github
больше 3 лет назад

In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts.

fstec логотип

BDU:2021-00875

CVSS3: 7.5
fstec
больше 5 лет назад

Уязвимость программного обеспечения Wireshark, существующая из-за недостаточной проверки входных данных, позволяющая нарушителю вызвать аварийное завершение работы приложения