---

CVE-2021-22235 - log back

CVE-2021-22235 edited at 20 Jul 2021 08:58:40
Description	- It may be possible to make Wireshark before version 3.4.7 crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. + It may be possible to make Wireshark before version 3.4.7 crash by injecting a malformed DNP3 packet onto the wire or by convincing someone to read a malformed packet trace file.

CVE-2021-22235 edited at 15 Jul 2021 08:25:09
Severity	- Unknown + Low
Remote	- Unknown + Remote
Type	- Unknown + Denial of service
Description	+ It may be possible to make Wireshark before version 3.4.7 crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
References	+ https://www.wireshark.org/security/wnpa-sec-2021-06 + https://gitlab.com/wireshark/wireshark/-/issues/17462 + https://gitlab.com/wireshark/wireshark/-/merge_requests/3477 + https://gitlab.com/wireshark/wireshark/-/commit/490fe2684bf63cf4fe03e6495c9ef74c8bc86a2b
Notes

CVE-2021-22235 created at 15 Jul 2021 08:22:48