CVE-2017-9617

Опубликовано: 14 июн. 2017

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in epan/dissectors/packet-daap.c in the DAAP dissector.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	released	2.6.3-1~ubuntu18.04.1
devel	not-affected	2.6.3-1
esm-apps/bionic	released	2.6.3-1~ubuntu18.04.1
esm-apps/xenial	released	2.6.3-1~ubuntu16.04.1
esm-infra-legacy/trusty	released	2.6.3-1~ubuntu14.04.1
precise/esm	DNE
trusty	released	2.6.3-1~ubuntu14.04.1
trusty/esm	released	2.6.3-1~ubuntu14.04.1
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2017-9617

EPSS

Процентиль: 45%

0.00221

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2017-9617

CVSS3: 3.3

redhat

больше 8 лет назад

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in epan/dissectors/packet-daap.c in the DAAP dissector.

CVE-2017-9617

CVSS3: 5.5

nvd

больше 8 лет назад

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in epan/dissectors/packet-daap.c in the DAAP dissector.

CVE-2017-9617

CVSS3: 5.5

debian

больше 8 лет назад

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion ...

GHSA-97wg-3gjr-5w5m

CVSS3: 5.5

github

больше 3 лет назад

In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in epan/dissectors/packet-daap.c in the DAAP dissector.

SUSE-SU-2017:2555-1

suse-cvrf

больше 8 лет назад

Security update for wireshark

EPSS

Процентиль: 45%

0.00221

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2017-9617

Описание

Пакет wireshark

Ссылки на источники

Связанные уязвимости