CVE-2021-39920 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Low
Remote	Yes
Type	Denial of service
Description	It may be possible to make Wireshark before version 3.4.10 crash by injecting a malformed IPPUSB packet onto the wire or by convincing someone to read a malformed packet trace file.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-2564	wireshark-cli	3.4.9-1	3.4.10-1	Low	Fixed

References
https://www.wireshark.org/security/wnpa-sec-2021-15 https://gitlab.com/wireshark/wireshark/-/issues/17705 https://gitlab.com/wireshark/wireshark/-/merge_requests/4936 https://gitlab.com/wireshark/wireshark/-/commit/a59cb43c238255ad9482ae4fe3097214264c4a00

References

https://www.wireshark.org/security/wnpa-sec-2021-15
https://gitlab.com/wireshark/wireshark/-/issues/17705
https://gitlab.com/wireshark/wireshark/-/merge_requests/4936
https://gitlab.com/wireshark/wireshark/-/commit/a59cb43c238255ad9482ae4fe3097214264c4a00