CVE-2022-4345

Опубликовано: 12 янв. 2023

Источник: debian

EPSS Низкий

Описание

Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
wireshark	fixed	4.0.2-1		package

Примечания

https://www.wireshark.org/security/wnpa-sec-2022-09.html
https://gitlab.com/wireshark/wireshark/-/merge_requests/8991
https://gitlab.com/wireshark/wireshark/-/merge_requests/8986
https://gitlab.com/wireshark/wireshark/-/commit/39db474f80af87449ce0f034522dccc80ed4153f

EPSS

Процентиль: 26%

0.00094

Низкий

Связанные уязвимости

CVE-2022-4345

CVSS3: 6.3

ubuntu

около 3 лет назад

Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

CVE-2022-4345

CVSS3: 6.3

redhat

около 3 лет назад

Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

CVE-2022-4345

CVSS3: 6.3

nvd

около 3 лет назад

Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

GHSA-mp4c-w7j9-95f4

CVSS3: 6.5

github

около 3 лет назад

Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in Wireshark 4.0.0 to 4.0.1 and 3.6.0 to 3.6.9 allows denial of service via packet injection or crafted capture file

SUSE-SU-2023:0343-1

suse-cvrf

почти 3 года назад

Security update for wireshark

EPSS

Процентиль: 26%

0.00094

Низкий