CVE-2017-11407

Опубликовано: 18 июл. 2017

Источник: redhat

CVSS3: 5.9

EPSS Низкий

Описание

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	wireshark	Will not fix
Red Hat Enterprise Linux 7	wireshark	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1472767wireshark: MQ dissector crash (wnpa-sec-2017-35)

EPSS

Процентиль: 78%

0.01186

Низкий

5.9 Medium

CVSS3

Связанные уязвимости

CVE-2017-11407

CVSS3: 7.5

ubuntu

больше 8 лет назад

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt.

CVE-2017-11407

CVSS3: 7.5

nvd

больше 8 лет назад

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt.

CVE-2017-11407

CVSS3: 7.5

debian

больше 8 лет назад

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector coul ...

GHSA-xh7w-hjwx-8jc2

CVSS3: 7.5

github

больше 3 лет назад

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt.

SUSE-SU-2017:2033-1

suse-cvrf

больше 8 лет назад

Security update for wireshark

EPSS

Процентиль: 78%

0.01186

Низкий

5.9 Medium

CVSS3