Test Kennung:	1.3.6.1.4.1.25623.1.0.124294
Kategorie:	Denial of Service
Titel:	Wireshark Security Update (wnpa-sec-2023-08) - Linux
Zusammenfassung:	Wireshark is prone to a denial of service (DoS) vulnerability.
Beschreibung:	Summary: Wireshark is prone to a denial of service (DoS) vulnerability. Vulnerability Insight: This issue occurs when decoding malformed packets from a pcap file or from the network, causing an out-of-bounds write, resulting in a Denial of Service and limited memory corruption. Vulnerability Impact: It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. Affected Software/OS: Wireshark version 3.6.0 through 3.6.11, 4.0 through 4.0.3. Solution: Update to version 3.6.12, 4.0.4 or later. CVSS Score: 8.5 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2023-1161 https://gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-1161.json Debian Security Information: DSA-5429 (Google Search) https://www.debian.org/security/2023/dsa-5429 https://security.gentoo.org/glsa/202309-02 https://gitlab.com/wireshark/wireshark/-/issues/18839 https://www.wireshark.org/security/wnpa-sec-2023-08.html https://lists.debian.org/debian-lts-announce/2023/04/msg00029.html
Copyright	Copyright (C) 2023 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.