CVE-2020-28030

Опубликовано: 30 окт. 2020

Источник: redhat

CVSS3: 7.5

Описание

In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	wireshark	Not affected
Red Hat Enterprise Linux 6	wireshark	Not affected
Red Hat Enterprise Linux 7	wireshark	Not affected
Red Hat Enterprise Linux 8	wireshark	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-835

https://bugzilla.redhat.com/show_bug.cgi?id=1893110wireshark: malformed packet on wire could make GQUIC protocol dissector loop

7.5 High

CVSS3

Связанные уязвимости

CVE-2020-28030

CVSS3: 7.5

ubuntu

больше 5 лет назад

In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement.

CVE-2020-28030

CVSS3: 7.5

nvd

больше 5 лет назад

In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement.

CVE-2020-28030

CVSS3: 7.5

debian

больше 5 лет назад

In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was ...

GHSA-983p-wv66-ffx7

github

больше 3 лет назад

In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement.

BDU:2022-00251

CVSS3: 7.5

fstec

около 5 лет назад

Уязвимость программы для анализа трафика wireshark, связанная с неверными вычислениями, позволяющая нарушителю вызвать отказ в обслуживании

7.5 High

CVSS3