CVE-2021-39926

Опубликовано: 17 нояб. 2021

Источник: redhat

CVSS3: 7.5

Описание

Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

A flaw was found in Wireshark. A process failure on crafted or malformed HCI_ISO input can cause a denial of service via packet injection or a crafted capture file.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	wireshark	Not affected
Red Hat Enterprise Linux 7	wireshark	Not affected
Red Hat Enterprise Linux 8	wireshark	Not affected
Red Hat Enterprise Linux 9	wireshark	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-120

https://bugzilla.redhat.com/show_bug.cgi?id=2025672wireshark: bluetooth HCI_ISO dissector crash

7.5 High

CVSS3

Связанные уязвимости

CVE-2021-39926

CVSS3: 7.5

ubuntu

около 4 лет назад

Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

CVE-2021-39926

CVSS3: 7.5

nvd

около 4 лет назад

Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

CVE-2021-39926

CVSS3: 7.5

msrc

около 4 лет назад

Описание отсутствует

CVE-2021-39926

CVSS3: 7.5

debian

около 4 лет назад

Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 ...

GHSA-g42c-hpcx-483f

CVSS3: 7.5

github

около 4 лет назад

Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

7.5 High

CVSS3