CVE-2019-5719 — Use of a Broken or Risky Cryptographic Algorithm in Wireshark

CWE-327 — Use of a Broken or Risky Cryptographic Algorithm CWE-476 — NULL Pointer Dereference7 documents6 sources

Severity

5.5MEDIUMNVD

EPSS

0.1%

top 67.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark Debian Linux

Timeline

PublishedJan 8

Latest updateMay 13

Description

In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was addressed in epan/dissectors/packet-isakmp.c by properly handling the case of a missing decryption data block.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 2.6.6-1 (bookworm)

▶Debianwireshark/wireshark< 2.6.6-1+3

▶NVDwireshark/wireshark2.4.0 — 2.4.11+1

Also affects: Debian Linux 8.0, 9.0

🔴Vulnerability Details

GHSA

GHSA-c4v7-p4hq-5262: In Wireshark 2↗2022-05-13

▶

OSV

CVE-2019-5719: In Wireshark 2↗2019-01-08

▶

📋Vendor Advisories

Red Hat

wireshark: ISAKMP dissector crash in epan/dissectors/packet-isakmp.c↗2019-01-08

▶

Debian

CVE-2019-5719: wireshark - In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could cras...↗2019

▶

💬Community

Bugzilla

CVE-2019-5719 wireshark: ISAKMP dissector crash in epan/dissectors/packet-isakmp.c↗2019-01-18

▶

Bugzilla

CVE-2019-5719 wireshark: ISAKMP dissector crash in epan/dissectors/packet-isakmp.c [fedora-all]↗2019-01-18

▶