CVE-2018-7335

Опубликовано: 18 фев. 2018

Источник: redhat

CVSS3: 3.3

Описание

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 dissector could crash. This was addressed in epan/crypt/airpdcap.c by rejecting lengths that are too small.

A denial of service flaw was found in the IEEE 802.11 dissector in Wireshark. A remote network attacker could potentially use this flaw to crash Wireshark by tricking it into processing a crafted packet.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	wireshark	Not affected
Red Hat Enterprise Linux 7	wireshark	Not affected
Red Hat Enterprise Linux 8	wireshark	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-130

https://bugzilla.redhat.com/show_bug.cgi?id=1549244wireshark: IEEE 802.11 dissector crash in airpdcap.c

3.3 Low

CVSS3

Связанные уязвимости

CVE-2018-7335

CVSS3: 7.5

ubuntu

почти 8 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 dissector could crash. This was addressed in epan/crypt/airpdcap.c by rejecting lengths that are too small.

CVE-2018-7335

CVSS3: 7.5

nvd

почти 8 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 dissector could crash. This was addressed in epan/crypt/airpdcap.c by rejecting lengths that are too small.

CVE-2018-7335

CVSS3: 7.5

debian

почти 8 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 disse ...

GHSA-2xmx-x2hf-79p7

CVSS3: 7.5

github

больше 3 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 dissector could crash. This was addressed in epan/crypt/airpdcap.c by rejecting lengths that are too small.

openSUSE-SU-2018:0540-1

suse-cvrf

почти 8 лет назад

Security update for wireshark

3.3 Low

CVSS3