CVE-2017-5597 — Integer Overflow or Wraparound in Wireshark

CWE-190 — Integer Overflow or Wraparound CWE-835 — Infinite Loop7 documents6 sources

Severity

7.5HIGHNVD

EPSS

0.5%

top 35.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark

Timeline

PublishedJan 25

Latest updateMay 17

Description

In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the DHCPv6 dissector could go into a large loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dhcpv6.c by changing a data type to avoid an integer overflow.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 2.2.4+gcc3dc1b-1 (bookworm)

▶Debianwireshark/wireshark< 2.2.4+gcc3dc1b-1+3

▶NVDwireshark/wireshark14 versions+13

Patches

Patch: bugs.wireshark.org ↗Patch: code.wireshark.org ↗Patch: bugs.wireshark.org ↗

🔴Vulnerability Details

GHSA

GHSA-q7cj-m22p-5m4p: In Wireshark 2↗2022-05-17

▶

OSV

CVE-2017-5597: In Wireshark 2↗2017-01-25

▶

📋Vendor Advisories

Red Hat

wireshark: DHCPv6 large loop (wnpa-sec-2017-02)↗2017-01-23

▶

Debian

CVE-2017-5597: wireshark - In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the DHCPv6 dissector could go in...↗2017

▶

💬Community

Bugzilla

CVE-2017-5596 CVE-2017-5597 wireshark: various flaws [fedora-all]↗2017-01-24

▶

Bugzilla

CVE-2017-5597 wireshark: DHCPv6 large loop (wnpa-sec-2017-02)↗2017-01-24

▶