CVE-2021-39920

NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file
Configurations

Configuration 1 (hide)

cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*

History

16 Dec 2021, 18:40

Type Values Removed Values Added
CPE cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
References (DEBIAN) https://www.debian.org/security/2021/dsa-5019 - (DEBIAN) https://www.debian.org/security/2021/dsa-5019 - Third Party Advisory
References (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A6AJFIYIHS3TYDD2EBYBJ5KKE52X34BJ/ - (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A6AJFIYIHS3TYDD2EBYBJ5KKE52X34BJ/ - Mailing List, Third Party Advisory
References (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YEWTIRMC2MFQBZ2O5M4CJHJM4JPBHLXH/ - (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YEWTIRMC2MFQBZ2O5M4CJHJM4JPBHLXH/ - Mailing List, Third Party Advisory

11 Dec 2021, 12:15

Type Values Removed Values Added
References
  • (DEBIAN) https://www.debian.org/security/2021/dsa-5019 -

03 Dec 2021, 03:15

Type Values Removed Values Added
References
  • (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A6AJFIYIHS3TYDD2EBYBJ5KKE52X34BJ/ -
  • (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YEWTIRMC2MFQBZ2O5M4CJHJM4JPBHLXH/ -

23 Nov 2021, 17:25

Type Values Removed Values Added
References (MISC) https://gitlab.com/wireshark/wireshark/-/issues/17705 - (MISC) https://gitlab.com/wireshark/wireshark/-/issues/17705 - Exploit, Issue Tracking, Third Party Advisory
References (MISC) https://www.wireshark.org/security/wnpa-sec-2021-15.html - (MISC) https://www.wireshark.org/security/wnpa-sec-2021-15.html - Vendor Advisory
References (CONFIRM) https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39920.json - (CONFIRM) https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39920.json - Third Party Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 5.0
v3 : 7.5
CWE CWE-476
CPE cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*

18 Nov 2021, 19:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-11-18 19:15

Updated : 2021-12-16 18:40


NVD link : CVE-2021-39920

Mitre link : CVE-2021-39920


JSON object : View

Products Affected

fedoraproject

  • fedora

wireshark

  • wireshark
CWE
CWE-476

NULL Pointer Dereference