CVE-2017-11407

Published: Jul 18, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=4e54dae7f0d7840836ee6d5ce1e688f152ab2978

x_refsource_CONFIRM

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13792

x_refsource_CONFIRM

[debian-lts-announce] 20190115 [SECURITY] [DLA 1634-1] wireshark security update

mailing-list

x_refsource_MLIST

99910

vdb-entry

x_refsource_BID

1038966

vdb-entry

x_refsource_SECTRACK

https://www.wireshark.org/security/wnpa-sec-2017-35.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-11407

Description

Affected Products

References