Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-0416

Опубликовано: 26 янв. 2023
Источник: debian

Описание

GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

Пакеты

ПакетСтатусВерсия исправленияРелизТип
wiresharkfixed4.0.3-1package
wiresharknot-affectedbusterpackage

Примечания

  • https://www.wireshark.org/security/wnpa-sec-2023-04.html

  • https://gitlab.com/wireshark/wireshark/-/issues/18779

  • https://gitlab.com/wireshark/wireshark/-/merge_requests/9322

  • Vulnerable dissector introduced with https://gitlab.com/wireshark/wireshark/-/commit/a87e56aa79f62ba8967e63da9d408e464596cd85 (first released with version 3.0.0)

Связанные уязвимости

ubuntu логотип

CVE-2023-0416

CVSS3: 6.3
ubuntu
около 3 лет назад

GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

redhat логотип

CVE-2023-0416

CVSS3: 6.5
redhat
около 3 лет назад

GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

nvd логотип

CVE-2023-0416

CVSS3: 6.3
nvd
около 3 лет назад

GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

github логотип

GHSA-pjxf-jxmw-2q29

CVSS3: 6.5
github
около 3 лет назад

GNW dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file

suse-cvrf логотип

SUSE-SU-2023:0343-1

suse-cvrf
почти 3 года назад

Security update for wireshark