CVE-2018-7336

Опубликовано: 30 янв. 2018

Источник: redhat

CVSS3: 3.3

Описание

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the FCP protocol dissector could crash. This was addressed in epan/dissectors/packet-fcp.c by checking for a NULL pointer.

A denial of service flaw was found in the FCP dissector in Wireshark. A remote network attacker could potentially use this flaw to crash Wireshark by tricking it into processing a crafted packet.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	wireshark	Not affected
Red Hat Enterprise Linux 7	wireshark	Not affected
Red Hat Enterprise Linux 8	wireshark	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-476

https://bugzilla.redhat.com/show_bug.cgi?id=1549270wireshark: FCP dissector crash in packet-fcp.c

3.3 Low

CVSS3

Связанные уязвимости

CVE-2018-7336

CVSS3: 7.5

ubuntu

почти 8 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the FCP protocol dissector could crash. This was addressed in epan/dissectors/packet-fcp.c by checking for a NULL pointer.

CVE-2018-7336

CVSS3: 7.5

nvd

почти 8 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the FCP protocol dissector could crash. This was addressed in epan/dissectors/packet-fcp.c by checking for a NULL pointer.

CVE-2018-7336

CVSS3: 7.5

debian

почти 8 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the FCP protocol diss ...

GHSA-qj6w-fmw8-346j

CVSS3: 7.5

github

больше 3 лет назад

In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the FCP protocol dissector could crash. This was addressed in epan/dissectors/packet-fcp.c by checking for a NULL pointer.

openSUSE-SU-2018:0540-1

suse-cvrf

почти 8 лет назад

Security update for wireshark

3.3 Low

CVSS3