OSV-2018-303

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wireshark/OSV-2018-303.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2018-303
Published
2021-01-15T00:00:29.537688Z
Modified
2022-04-13T04:20:11.137505Z
Summary
UNKNOWN READ in _gcry_aes_cbc_enc
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=6336

Crash type: UNKNOWN READ
Crash state:
_gcry_aes_cbc_enc
cmac_write
_gcry_cipher_cmac_authenticate
References

Affected packages

OSS-Fuzz / wireshark

Package

Name
wireshark
Purl
pkg:generic/wireshark

Affected ranges

Type
GIT
Repo
https://gitlab.com/wireshark/wireshark.git
Events
Introduced
6ef693dec1fd189d0995d8ad6a06c29c05823ce8
Fixed
bc43d687f0751cb95ecd9446589e7b37506ff1c6
Fixed
d0b07245ec7878fceba1cb6b272d3efb333b7dd6

Affected versions

v2.*

v2.5.0
v2.5.1rc0

wireshark-2.*

wireshark-2.5.0

Ecosystem specific 

{
    "severity": "MEDIUM",
    "introduced_range": "8fbad3dd56b45874463f9d811b80006314413c0e:95c50e3dd766e919953def30f65ba5496226a660"
}

Database specific 

{
    "fixed_range": "0a8152c260b7939633e91202ae6f5c8075405f97:d0b07245ec7878fceba1cb6b272d3efb333b7dd6"
}