CVE-2019-10894

Опубликовано: 18 мар. 2019

Источник: redhat

CVSS3: 6.5

EPSS Средний

Описание

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 8	wireshark	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-617

https://bugzilla.redhat.com/show_bug.cgi?id=1697947wireshark: GSS-API dissector crash (wnpa-sec-2019-14)

EPSS

Процентиль: 94%

0.12832

Средний

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2019-10894

CVSS3: 7.5

ubuntu

почти 7 лет назад

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called.

CVE-2019-10894

CVSS3: 7.5

nvd

почти 7 лет назад

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called.

CVE-2019-10894

CVSS3: 7.5

debian

почти 7 лет назад

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API d ...

GHSA-crh9-ppwm-j9xc

CVSS3: 7.5

github

больше 3 лет назад

In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called.

BDU:2020-02569

CVSS3: 7.5

fstec

почти 7 лет назад

Уязвимость функции disct_gssapi_work (packet-gssapi.c) анализатора трафика компьютерных сетей Wireshark, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 94%

0.12832

Средний

6.5 Medium

CVSS3