CVE-2021-39923

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2021-39923

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-39923.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-39923

Related

Published

2021-11-19T17:15:08Z

Modified

2024-09-18T03:20:09.196589Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

[none]

Details

Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

References

Affected packages

Debian:11 / wireshark

Package

Name: wireshark
Purl: pkg:deb/debian/wireshark?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.4.10-0+deb11u1

Affected versions

3.*

3.4.4-1

3.4.6-1~exp1

3.4.7-1~exp1

3.4.7-1

3.4.8-1

3.4.9-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:12 / wireshark

Package

Name: wireshark
Purl: pkg:deb/debian/wireshark?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.6.0-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Debian:13 / wireshark

Package

Name: wireshark
Purl: pkg:deb/debian/wireshark?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.6.0-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Git / github.com/wireshark/wireshark

Affected ranges

Type: GIT
Repo: https://github.com/wireshark/wireshark
Events: Introduced

9733f173ea5e6255e8da208ef183210aa264d948

Last affected

365e236f5efec8d00c840f68b0529e31e9b74a36

Introduced

e0ed4cfa3d72110257da54c26ad3a28d282ef454

Last affected

f73d1bc180e75084e7f599d86007f0f31123db19

Affected versions

v3.*

v3.2.0

v3.2.1

v3.2.10

v3.2.10rc0

v3.2.11

v3.2.11rc0

v3.2.12

v3.2.12rc0

v3.2.13

v3.2.13rc0

v3.2.14

v3.2.14rc0

v3.2.15

v3.2.15rc0

v3.2.16

v3.2.16rc0

v3.2.17

v3.2.17rc0

v3.2.1rc0

v3.2.2

v3.2.2rc0

v3.2.3

v3.2.3rc0

v3.2.4

v3.2.4rc0

v3.2.5

v3.2.5rc0

v3.2.6

v3.2.6rc0

v3.2.7

v3.2.7rc0

v3.2.8

v3.2.8rc0

v3.2.9

v3.2.9rc0

v3.4.0

v3.4.1

v3.4.1rc0

v3.4.2

v3.4.2rc0

v3.4.3

v3.4.3rc0

v3.4.4

v3.4.4rc0

v3.4.5

v3.4.5rc0

v3.4.6

v3.4.6rc0

v3.4.7

v3.4.7rc0

v3.4.8

v3.4.8rc0

v3.4.9

v3.4.9rc0

wireshark-3.*

wireshark-3.2.0

wireshark-3.2.1

wireshark-3.2.10

wireshark-3.2.11

wireshark-3.2.12

wireshark-3.2.13

wireshark-3.2.14

wireshark-3.2.15

wireshark-3.2.16

wireshark-3.2.17

wireshark-3.2.2

wireshark-3.2.3

wireshark-3.2.4

wireshark-3.2.5

wireshark-3.2.6

wireshark-3.2.7

wireshark-3.2.8

wireshark-3.2.9

wireshark-3.4.0

wireshark-3.4.1

wireshark-3.4.2

wireshark-3.4.3

wireshark-3.4.4

wireshark-3.4.5

wireshark-3.4.6

wireshark-3.4.7

wireshark-3.4.8

wireshark-3.4.9