CVE-2017-11409 — Excessive Iteration in Wireshark

CWE-834 — Excessive Iteration6 documents6 sources

Severity

7.5HIGHNVD

EPSS

1.2%

top 21.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark Debian Linux

Timeline

PublishedJul 18

Latest updateMay 13

Description

In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop. This was addressed in epan/dissectors/packet-gprs-llc.c by using a different integer data type.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 2.2.0~rc1+g438c022-1 (bookworm)

▶Debianwireshark/wireshark< 2.2.0~rc1+g438c022-1+3

▶NVDwireshark/wireshark2.0.0 — 2.0.13

Also affects: Debian Linux 8.0

Patches

Patch: bugs.wireshark.org ↗Patch: bugs.wireshark.org ↗

🔴Vulnerability Details

GHSA

GHSA-wj72-w3g7-f3jq: In Wireshark 2↗2022-05-13

▶

OSV

CVE-2017-11409: In Wireshark 2↗2017-07-18

▶

📋Vendor Advisories

Red Hat

wireshark: GPRS LLC dissector large loop. (wnpa-sec-2017-37)↗2017-07-18

▶

Debian

CVE-2017-11409: wireshark - In Wireshark 2.0.0 to 2.0.13, the GPRS LLC dissector could go into a large loop....↗2017

▶

💬Community

Bugzilla

CVE-2017-11409 wireshark: GPRS LLC dissector large loop. (wnpa-sec-2017-37)↗2017-07-19

▶