OSV-2020-256

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wireshark/OSV-2020-256.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2020-256
Published
2020-06-27T00:00:07.839773Z
Modified
2022-04-13T03:04:37.821970Z
Summary
Global-buffer-overflow in dissect_wassp_sub_tlv
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20004

Crash type: Global-buffer-overflow READ 8
Crash state:
dissect_wassp_sub_tlv
dissect_wassp_sub_tlv
dissect_wassp_tlv
References

Affected packages

OSS-Fuzz / wireshark

Package

Name
wireshark
Purl
pkg:generic/wireshark

Affected ranges

Type
GIT
Repo
https://gitlab.com/wireshark/wireshark.git
Events
Introduced
c7854720c805ad3b96c1ceecff3be547f5748830
Fixed
71b59b18e4bb61d0e6da8bb2b26c87750570ae40
Fixed
f90a3720b73ca140403315126e2a478c4f70ca03

Affected versions

v3.*

v3.1.0
v3.1.1
v3.1.1rc0
v3.1.2rc0
v3.2.0
v3.2.0rc0
v3.2.0rc1
v3.2.0rc2
v3.2.1rc0
v3.3.0rc0

wireshark-3.*

wireshark-3.2.0