Lucene search

K

Veracode Vulnerability DatabaseVERACODE:26922

HistorySep 21, 2020 - 6:25 a.m.

Denial Of Service (DoS)

2020-09-2106:25:56

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

3

0.002 Low

EPSS

Percentile

56.4%

wireshark is vulnerable to denial of service (DoS). The vulnerability exists as the NetScaler file parser could crash through poor data validation in wiretap/netscaler.c.

CPENameOperatorVersion
wireshark:bioniceq2.4.5-1
wireshark:xenialeq2.0.2+ga16e22e-1
wireshark:stretcheq2.6.7-1~deb9u1
wireshark:bioniceq2.4.5-1
wireshark:xenialeq2.0.2+ga16e22e-1
wireshark:stretcheq2.6.7-1~deb9u1

References

lists.opensuse.org/opensuse-security-announce/2019-05/msg00022.html

lists.opensuse.org/opensuse-security-announce/2019-05/msg00027.html

lists.opensuse.org/opensuse-security-announce/2020-03/msg00027.html

www.securityfocus.com/bid/107834

bugs.wireshark.org/bugzilla/show_bug.cgi?id=15497

code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=2fbbde780e5d5d82e31dca656217daf278cf62bb

code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=38680c4c69f9f4e0f39e29b66fe2b02d88eb629d

code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cab0cff6abdd7a5b5b0bfa4ee204eea951e129e9

lists.debian.org/debian-lts-announce/2019/05/msg00034.html

lists.debian.org/debian-lts-announce/2020/10/msg00036.html

lists.fedoraproject.org/archives/list/[email protected]/message/4LYIOOQIMFQ3PA7AFBK4DNXHISTEYUC5/

lists.fedoraproject.org/archives/list/[email protected]/message/PU3QA2DUO3XS24QE24CQRP4A4XQQY76R/

usn.ubuntu.com/3986-1/

www.wireshark.org/security/wnpa-sec-2019-09.html

0.002 Low

EPSS

Percentile

56.4%

Related for VERACODE:26922

osv3 redhatcve1 cvelist1 prion1 cve1 nvd1 alpinelinux1 ubuntucve1 debiancve1 openvas16 nessus22 debian2 kaspersky1 suse3 ubuntu1 fedora3 altlinux1