CVE-2023-5371
5.3MEDIUMRTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via packet injection or crafted capture file
Published: 10/4/2023Updated: 11/21/2024
Description
RTPS dissector memory leak in Wireshark 4.0.0 to 4.0.8 and 3.6.0 to 3.6.16 allows denial of service via packet injection or crafted capture file
AI AnalysisPowered by AI
Affected Products
wiresharkwireshark
wiresharkwireshark
References
- https://gitlab.com/wireshark/wireshark/-/issues/19322ExploitIssue TrackingVendor Advisory
- https://www.wireshark.org/security/wnpa-sec-2023-27.htmlVendor Advisory
- https://gitlab.com/wireshark/wireshark/-/issues/19322ExploitIssue TrackingVendor Advisory
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/34DBP5P2RHQ7XUABPANYYMOGV5KS6VEP/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MADSCHKZSCKQ5NLIX3UMOIJD2JZ65L4V/
- https://security.gentoo.org/glsa/202402-09
- https://www.wireshark.org/security/wnpa-sec-2023-27.htmlVendor Advisory