CVE-2018-7320

Опубликовано: 06 фев. 2018

Источник: redhat

CVSS3: 3.3

EPSS Низкий

Описание

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	wireshark	Not affected
Red Hat Enterprise Linux 7	wireshark	Not affected
Red Hat Enterprise Linux 8	wireshark	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-122

https://bugzilla.redhat.com/show_bug.cgi?id=1549277wireshark: Heap-based Buffer Overflow in SIGCOMP dissector crash in packet-sigcomp.c

EPSS

Процентиль: 72%

0.007

Низкий

3.3 Low

CVSS3

Связанные уязвимости

CVE-2018-7320

CVSS3: 7.5

ubuntu

почти 8 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets.

CVE-2018-7320

CVSS3: 7.5

nvd

почти 8 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets.

CVE-2018-7320

CVSS3: 7.5

debian

почти 8 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol ...

GHSA-45vr-8xvm-rhpc

CVSS3: 7.5

github

больше 3 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets.

openSUSE-SU-2018:0540-1

suse-cvrf

почти 8 лет назад

Security update for wireshark

EPSS

Процентиль: 72%

0.007

Низкий

3.3 Low

CVSS3