CVE-2016-7957 — Improper Input Validation in Wireshark

CWE-20 — Improper Input Validation6 documents6 sources

Severity

7.5HIGHNVD

EPSS

0.3%

top 43.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark

Timeline

PublishedApr 12

Latest updateMay 17

Description

In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a seven-byte memcmp for potentially shorter strings.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 2.2.1+ga6fbd27-1 (bookworm)

▶Debianwireshark/wireshark< 2.2.1+ga6fbd27-1+3

▶NVDwireshark/wireshark2.2.0

Patches

Patch: bugs.wireshark.org ↗Patch: bugs.wireshark.org ↗

🔴Vulnerability Details

GHSA

GHSA-w25r-fmpr-8r73: In Wireshark 2↗2022-05-17

▶

OSV

CVE-2016-7957: In Wireshark 2↗2017-04-12

▶

📋Vendor Advisories

Red Hat

wireshark: Bluetooth L2CAP dissector crash↗2016-10-04

▶

Debian

CVE-2016-7957: wireshark - In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by pack...↗2016

▶

💬Community

Bugzilla

CVE-2016-7957 wireshark: Bluetooth L2CAP dissector crash↗2016-10-05

▶