CVE-2017-13767

Опубликовано: 29 авг. 2017

Источник: redhat

CVSS3: 5.9

Описание

In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-msdp.c by adding length validation.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 6	wireshark	Will not fix
Red Hat Enterprise Linux 7	wireshark	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1486628wireshark: MSDP dissector infinite loop (wnpa-sec-2017-38)

5.9 Medium

CVSS3

Связанные уязвимости

CVE-2017-13767

CVSS3: 7.5

ubuntu

больше 8 лет назад

In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-msdp.c by adding length validation.

CVE-2017-13767

CVSS3: 7.5

nvd

больше 8 лет назад

In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-msdp.c by adding length validation.

CVE-2017-13767

CVSS3: 7.5

debian

больше 8 лет назад

In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP diss ...

GHSA-w6c6-qjcr-rfwc

CVSS3: 7.5

github

больше 3 лет назад

In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-msdp.c by adding length validation.

openSUSE-SU-2017:2349-1

suse-cvrf

больше 8 лет назад

Security update for wireshark

5.9 Medium

CVSS3