CVE-2018-7337

Published: Feb 23, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

In Wireshark 2.4.0 to 2.4.4, the DOCSIS protocol dissector could crash. This was addressed in plugins/docsis/packet-docsis.c by removing the recursive algorithm that had been used for concatenated PDUs.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[debian-lts-announce] 20180418 [SECURITY] [DLA 1353-1] wireshark security update

mailing-list

x_refsource_MLIST

103164

vdb-entry

x_refsource_BID

https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=511a8b0b546d25413e289dc5a7d3a455a33994c2

x_refsource_CONFIRM

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14446

x_refsource_CONFIRM

https://www.wireshark.org/security/wnpa-sec-2018-08.html

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-7337

Description

Affected Products

References