Описание
An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handle_prism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle_80211, which will result in an out-of-bounds read and may allow access to sensitive memory (or a denial of service).
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.4.5+repack1-4ubuntu0.18.04.1 |
| cosmic | released | 1.4.5+repack1-4ubuntu0.18.10.1 |
| devel | not-affected | 1.5.2+repack1-1 |
| disco | not-affected | 1.5.2+repack1-1 |
| eoan | not-affected | 1.5.2+repack1-1 |
| esm-apps/bionic | released | 1.4.5+repack1-4ubuntu0.18.04.1 |
| esm-apps/focal | not-affected | 1.5.2+repack1-1 |
| esm-apps/jammy | not-affected | 1.5.2+repack1-1 |
| esm-apps/xenial | released | 1.4.5+repack1-1ubuntu0.1 |
| esm-infra-legacy/trusty | released | 1.4.4+repack1-2ubuntu0.1~esm1 |
Показывать по
6.4 Medium
CVSS2
9.1 Critical
CVSS3
Связанные уязвимости
An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handle_prism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle_80211, which will result in an out-of-bounds read and may allow access to sensitive memory (or a denial of service).
An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1. ...
An issue was discovered in wifipcap/wifipcap.cpp in TCPFLOW through 1.5.0-alpha. There is an integer overflow in the function handle_prism during caplen processing. If the caplen is less than 144, one can cause an integer overflow in the function handle_80211, which will result in an out-of-bounds read and may allow access to sensitive memory (or a denial of service).
6.4 Medium
CVSS2
9.1 Critical
CVSS3