Описание
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.6.5-1~ubuntu18.04.0 |
| cosmic | released | 2.6.5-1~ubuntu18.10.0 |
| devel | not-affected | 2.6.5-1 |
| esm-apps/bionic | released | 2.6.5-1~ubuntu18.04.0 |
| esm-apps/xenial | released | 2.6.5-1~ubuntu16.04.0 |
| esm-infra-legacy/trusty | released | 2.6.5-1~ubuntu14.04.1 |
| precise/esm | DNE | |
| trusty | released | 2.6.5-1~ubuntu14.04.1 |
| trusty/esm | released | 2.6.5-1~ubuntu14.04.1 |
| upstream | released | 2.6.5-1 |
Показывать по
5 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values.
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values.
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector ...
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values.
Уязвимость LBMPDM диссектора анализатора трафика компьютерных сетей Wireshark, позволяющая нарушителю вызвать отказ в обслуживании
5 Medium
CVSS2
7.5 High
CVSS3