CVE-2023-1161

Опубликовано: 06 мар. 2023

Источник: debian

EPSS Низкий

Описание

ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
wireshark	fixed	4.0.5-1~exp1	experimental	package
wireshark	fixed	4.0.6-1		package

Примечания

https://www.wireshark.org/security/wnpa-sec-2023-08.html
https://gitlab.com/wireshark/wireshark/-/issues/18839
Only affects ISO 15765 dissector in bullseye and older,
ISO 10681 support was added in 3.6

EPSS

Процентиль: 37%

0.00161

Низкий

Связанные уязвимости

CVE-2023-1161

CVSS3: 6.3

ubuntu

почти 3 года назад

ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file

CVE-2023-1161

CVSS3: 7.1

redhat

почти 3 года назад

ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file

CVE-2023-1161

CVSS3: 6.3

nvd

почти 3 года назад

ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file

SUSE-SU-2023:1762-1

suse-cvrf

почти 3 года назад

Security update for wireshark

GHSA-rf23-mj2w-9g24

CVSS3: 6.5

github

почти 3 года назад

ISO 15765 and ISO 10681 dissector crash in Wireshark 4.0.0 to 4.0.3 and 3.6.0 to 3.6.11 allows denial of service via packet injection or crafted capture file

EPSS

Процентиль: 37%

0.00161

Низкий