CVE-2019-9214 — NULL Pointer Dereference in Wireshark

CWE-476 — NULL Pointer Dereference8 documents7 sources

Severity

7.5HIGHNVD

EPSS

4.8%

top 10.49%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark Debian Linux

Timeline

PublishedFeb 28

Latest updateMay 14

Description

In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the RPCAP dissector could crash. This was addressed in epan/dissectors/packet-rpcap.c by avoiding an attempted dereference of a NULL conversation.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 2.6.7-1 (bookworm)

▶Debianwireshark/wireshark< 2.6.7-1+3

▶NVDwireshark/wireshark2.4.0 — 2.4.12+1

Also affects: Debian Linux 9.0

🔴Vulnerability Details

GHSA

GHSA-87vf-6frx-g3h2: In Wireshark 2↗2022-05-14

▶

OSV

CVE-2019-9214: In Wireshark 2↗2019-02-28

▶

📋Vendor Advisories

Ubuntu

Wireshark vulnerabilities↗2019-05-16

▶

Red Hat

wireshark: null-deference read in RPCAP dissector↗2019-02-27

▶

Debian

CVE-2019-9214: wireshark - In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the RPCAP dissector could crash...↗2019

▶

💬Community

Bugzilla

CVE-2019-9214 wireshark: null-deference read in RPCAP dissector [fedora-all]↗2019-04-04

▶

Bugzilla

CVE-2019-9214 wireshark: null-deference read in RPCAP dissector↗2019-02-28

▶