Your submission was sent successfully! Close

CVE-2017-9350

Published: 2 June 2017

In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the openSAFETY dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-opensafety.c by checking for a negative length.

Priority

Medium

CVSS 3 base score: 7.5

Status

Package Release Status
wireshark
Launchpad, Ubuntu, Debian
artful
Released (2.2.6+g32dac6a-2)
bionic
Released (2.6.3-1~ubuntu18.04.1)
precise Does not exist

trusty
Released (2.6.3-1~ubuntu14.04.1)
upstream Needs triage

xenial
Released (2.6.3-1~ubuntu16.04.1)
yakkety
Released (2.2.6+g32dac6a-2ubuntu0.16.10)
zesty
Released (2.2.6+g32dac6a-2ubuntu0.17.04)