CVE-2017-15189

Source
Severity Medium
Remote Yes
Type Denial of service
Description
An infinite loop flaw has been discovered in wireshark before 2.4.2 in the DOCSIS dissector leading to excessive consumption of CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
Group Package Affected Fixed Severity Status Ticket
AVG-440 wireshark-cli 2.4.1-1 2.4.2-1 Medium Fixed
Date Advisory Group Package Severity Description
12 Oct 2017 ASA-201710-14 AVG-440 wireshark-cli Medium denial of service
References
https://www.wireshark.org/security/wnpa-sec-2017-46.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14080
https://code.wireshark.org/review/#/c/23663/