Description
TIPC dissector crash in Wireshark 4.0.0 to 4.0.2 and 3.6.0 to 3.6.10 and allows denial of service via packet injection or crafted capture file
References
https://gitlab.com/wireshark/wireshark/-/issues/18770
Issue TrackingPatch
https://lists.debian.org/debian-lts-announce/2023/02/msg00007.html
Mailing ListThird Party Advisory
https://www.wireshark.org/security/wnpa-sec-2023-07.html
Vendor Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
7.1 · High
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2023-01-26T21:18:07.727
2 years agoLast modified
2023-02-14T18:50:45.467
2 years ago