Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-5165HistoryAug 01, 2014 - 11:13 a.m.
CVE-2014-5165
2014-08-0111:13:00
Debian Security Bug Tracker
security-tracker.debian.org
9
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.011 Low
EPSS
Percentile
84.4%
The dissect_ber_constrained_bitstring function in epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.10.x before 1.10.9 does not properly validate padding values, which allows remote attackers to cause a denial of service (buffer underflow and application crash) via a crafted packet.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | wireshark | < 1.12.0+git+4fab41a1-1 | wireshark_1.12.0+git+4fab41a1-1_all.deb |
| Debian | 11 | all | wireshark | < 1.12.0+git+4fab41a1-1 | wireshark_1.12.0+git+4fab41a1-1_all.deb |
| Debian | 10 | all | wireshark | < 1.12.0+git+4fab41a1-1 | wireshark_1.12.0+git+4fab41a1-1_all.deb |
| Debian | 999 | all | wireshark | < 1.12.0+git+4fab41a1-1 | wireshark_1.12.0+git+4fab41a1-1_all.deb |
| Debian | 13 | all | wireshark | < 1.12.0+git+4fab41a1-1 | wireshark_1.12.0+git+4fab41a1-1_all.deb |
Related
prion
prion
Buffer overflow
2014-08-01 11:13:00
ubuntucve
ubuntucve
CVE-2014-5165
2014-08-01 00:00:00
cve
cve
CVE-2014-5165
2014-08-01 11:13:00
nessus
nessus
GLSA-201409-01 : Wireshark: Multiple vulnerabilities
2014-09-02 00:00:00
openSUSE Security Update : wireshark (openSUSE-SU-2014:1038-1)
2014-08-21 00:00:00
Wireshark 1.10.x < 1.10.9 Multiple DoS Vulnerabilities
2014-08-04 00:00:00
osv
osv
wireshark - security update
2014-08-10 00:00:00
kaspersky
kaspersky
KLA10400 DoS vulnerabilities in Wireshark
2014-08-01 00:00:00
debian
debian
[SECURITY] [DSA 3002-1] wireshark security update
2014-08-10 21:02:53
securityvulns
securityvulns
[ MDVSA-2014:159 ] wireshark
2014-08-10 00:00:00
wireshark multiple security vulnerabilities
2014-08-10 00:00:00
mageia
mageia
Updated wireshark package fix security vulnerabilities
2014-08-12 13:16:46
openvas
openvas
Debian Security Advisory DSA 3002-1 (wireshark - security update)
2014-08-10 00:00:00
Fedora Update for wireshark FEDORA-2014-9112
2014-08-08 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: wireshark-1.10.9-1.fc20
2014-08-07 15:32:28
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2014-09-01 00:00:00
suse
suse
Security update for wireshark (important)
2014-09-27 00:04:33
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.011 Low
EPSS
Percentile
84.4%
Related for DEBIANCVE:CVE-2014-5165