PT-2017-11990 · Wireshark+1 · Wireshark+1

Published

2016-09-11

Updated

2019-10-03

CVE-2017-11409

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Wireshark versions 2.0.0 through 2.0.13

Description The issue is related to the GPRS LLC dissector in Wireshark, which could enter a large loop. This was resolved by changing the integer data type used in the dissector.

Recommendations For Wireshark versions 2.0.0 through 2.0.13, update the epan/dissectors/packet-gprs-llc.c file to use a different integer data type to prevent the dissector from going into a large loop.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-834

Related Identifiers

ALT-PU-2016-1965

CVE-2017-11409

DLA-1634-1

MGASA-2017-0219

Affected Products

Alt Linux

Wireshark

PT-2017-11990 · Wireshark+1 · Wireshark+1

CVE-2017-11409

Weakness Enumeration

Related Identifiers

Affected Products

References · 98