Vulnerability CVE-2022-0582: Information
Description
Unaligned access in the CSN.1 protocol dissector in Wireshark 3.6.0 to 3.6.1 and 3.4.0 to 3.4.11 allows denial of service via packet injection or crafted capture file
Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Fixed packages
Package name | Branch | Fixed in version | Version from repository | Errata ID | Task # | State |
|---|---|---|---|---|---|---|
| wireshark | sisyphus | 3.6.2-alt1 | 4.2.5-alt1 | ALT-PU-2022-1349-1 | 295749 | Fixed |
| wireshark | sisyphus_e2k | 3.6.2-alt1 | 4.2.5-alt1 | ALT-PU-2022-4111-1 | - | Fixed |
| wireshark | p10 | 3.6.2-alt1 | 4.0.11-alt1 | ALT-PU-2022-1391-1 | 295750 | Fixed |
| wireshark | p10_e2k | 3.6.2-alt1 | 4.0.11-alt1 | ALT-PU-2022-4188-1 | - | Fixed |
| wireshark | p9 | 3.6.2-alt1 | 4.0.8-alt1 | ALT-PU-2022-1599-1 | 295752 | Fixed |
| wireshark | p9_e2k | 3.6.2-alt1 | 4.0.8-alt1 | ALT-PU-2022-4728-1 | - | Fixed |
| wireshark | c10f1 | 3.6.2-alt1 | 4.0.11-alt1 | ALT-PU-2022-1391-1 | 295750 | Fixed |
| wireshark | c9f2 | 3.6.2-alt1 | 4.0.11-alt1 | ALT-PU-2022-1368-1 | 295751 | Fixed |
| wireshark | p11 | 3.6.2-alt1 | 4.2.5-alt1 | ALT-PU-2022-1349-1 | 295749 | Fixed |
References to Advisories, Solutions, and Tools
Hyperlink | Resource |
|---|---|
| https://www.wireshark.org/security/wnpa-sec-2022-04.html |
|
| https://gitlab.com/wireshark/wireshark/-/issues/17882 |
|
| https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0582.json |
|
| [debian-lts-announce] 20220331 [SECURITY] [DLA 2967-1] wireshark security update |
|
| GLSA-202210-04 |
|
| FEDORA-2022-5a3603afe0 | |
| FEDORA-2022-e29665a42b |