CVE-2018-11359

Опубликовано: 18 мая 2018

Источник: redhat

CVSS3: 5.3

Описание

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in epan/proto.c by avoiding a NULL pointer dereference.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	wireshark	Not affected
Red Hat Enterprise Linux 6	wireshark	Not affected
Red Hat Enterprise Linux 7	wireshark	Not affected
Red Hat Enterprise Linux 8	wireshark	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=1581778wireshark: Out-of-bounds Read in proto.c

5.3 Medium

CVSS3

Связанные уязвимости

CVE-2018-11359

CVSS3: 7.5

ubuntu

больше 7 лет назад

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in epan/proto.c by avoiding a NULL pointer dereference.

CVE-2018-11359

CVSS3: 7.5

nvd

больше 7 лет назад

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in epan/proto.c by avoiding a NULL pointer dereference.

CVE-2018-11359

CVSS3: 7.5

debian

больше 7 лет назад

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC disse ...

GHSA-j972-pjfr-892x

CVSS3: 7.5

github

больше 3 лет назад

In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in epan/proto.c by avoiding a NULL pointer dereference.

openSUSE-SU-2018:1428-1

suse-cvrf

больше 7 лет назад

Security update for wireshark

5.3 Medium

CVSS3