Уязвимость в компоновке Bluetooth L2CAP диссектора в Wireshark, приводящая к делению на ноль
Описание
В Wireshark обнаружена уязвимость в процессе обработки данных посредством Bluetooth L2CAP диссектора, которая может приводить к делению на ноль. Это происходит из-за некорректной обработки значений интервалов в коде epan/dissectors/packet-btl2cap.c.
Затронутые версии ПО
- Wireshark версии с 2.2.0 до 2.2.6
- Wireshark версии с 2.0.0 до 2.0.12
Тип уязвимости
Деление на ноль
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Issue TrackingThird Party Advisory
- Issue TrackingPatchVendor Advisory
- Mailing ListThird Party Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Issue TrackingThird Party Advisory
- Issue TrackingPatchVendor Advisory
- Mailing ListThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Одно из
EPSS
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
Связанные уязвимости
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value.
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value.
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP d ...
In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value.
EPSS
7.5 High
CVSS3
5 Medium
CVSS2