Описание
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash. This was addressed in epan/dissectors/packet-ber.c by preventing a buffer overflow associated with excessive digits in time values.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 2.6.8-1~ubuntu18.04.0 |
| cosmic | released | 2.6.8-1~ubuntu18.10.0 |
| devel | not-affected | 2.6.8-1 |
| disco | not-affected | 2.6.8-1 |
| eoan | not-affected | 2.6.8-1 |
| esm-apps/bionic | released | 2.6.8-1~ubuntu18.04.0 |
| esm-apps/focal | not-affected | 2.6.8-1 |
| esm-apps/jammy | not-affected | 2.6.8-1 |
| esm-apps/xenial | released | 2.6.8-1~ubuntu16.04.0 |
| esm-infra-legacy/trusty | not-affected | 2.6.8-1~ubuntu14.04.0~esm1 |
Показывать по
Ссылки на источники
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash. This was addressed in epan/dissectors/packet-ber.c by preventing a buffer overflow associated with excessive digits in time values.
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash. This was addressed in epan/dissectors/packet-ber.c by preventing a buffer overflow associated with excessive digits in time values.
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and rel ...
In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash. This was addressed in epan/dissectors/packet-ber.c by preventing a buffer overflow associated with excessive digits in time values.
Уязвимость компонента ASN.1 BER диссектора анализатора трафика компьютерных сетей Wireshark, связанная с выходом операции за границы памяти, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3