CVE-2015-3906 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Wireshark

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer9 documents5 sources

Severity

5.0MEDIUMNVD

EPSS

0.6%

top 31.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark

Timeline

PublishedMay 26

Latest updateMay 17

Description

The logcat_dump_text function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not properly handle a lack of \0 termination, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted message in a packet, a different vulnerability than CVE-2015-3815.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 1.12.5+g5819e5b-1 (bookworm)

▶Debianwireshark/wireshark< 1.12.5+g5819e5b-1+3

▶NVDwireshark/wireshark5 versions+4

🔴Vulnerability Details

GHSA

GHSA-mf3q-r5cj-w985: The detect_version function in wiretap/logcat↗2022-05-17

▶

GHSA

GHSA-fx4j-jxfj-qvjh: The logcat_dump_text function in wiretap/logcat↗2022-05-17

▶

OSV

CVE-2015-3906: The logcat_dump_text function in wiretap/logcat↗2015-05-26

▶

OSV

CVE-2015-3815: The detect_version function in wiretap/logcat↗2015-05-26

▶

📋Vendor Advisories

Red Hat

wireshark: Android Logcat file parser crash (wnpa-sec-2015-18)↗2015-05-12

▶

Debian

CVE-2015-3906: wireshark - The logcat_dump_text function in wiretap/logcat.c in the Android Logcat file par...↗2015

▶

Debian

CVE-2015-3815: wireshark - The detect_version function in wiretap/logcat.c in the Android Logcat file parse...↗2015

▶