CVE-2017-5596 — Integer Overflow or Wraparound in Wireshark

CWE-190 — Integer Overflow or Wraparound CWE-835 — Infinite Loop7 documents6 sources

Severity

7.5HIGHNVD

EPSS

0.6%

top 31.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark

Timeline

PublishedJan 25

Latest updateMay 13

Description

In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-asterix.c by changing a data type to avoid an integer overflow.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 2.2.4+gcc3dc1b-1 (bookworm)

▶Debianwireshark/wireshark< 2.2.4+gcc3dc1b-1+3

▶NVDwireshark/wireshark14 versions+13

Patches

Patch: bugs.wireshark.org ↗Patch: code.wireshark.org ↗Patch: bugs.wireshark.org ↗

🔴Vulnerability Details

GHSA

GHSA-4px5-pmpr-cw9x: In Wireshark 2↗2022-05-13

▶

OSV

CVE-2017-5596: In Wireshark 2↗2017-01-25

▶

📋Vendor Advisories

Red Hat

wireshark: ASTERIX infinite loop (wnpa-sec-2017-01)↗2017-01-23

▶

Debian

CVE-2017-5596: wireshark - In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go i...↗2017

▶

💬Community

Bugzilla

CVE-2017-5596 wireshark: ASTERIX infinite loop (wnpa-sec-2017-01)↗2017-01-24

▶

Bugzilla

CVE-2017-5596 CVE-2017-5597 wireshark: various flaws [fedora-all]↗2017-01-24

▶