Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 784899 (CVE-2021-22207, WNPA-SEC-2021-04)

Summary: <net-analyzer/wireshark-3.4.5: Memory exhaustion via MS-WSP dissector (CVE-2021-22207)
Product: Gentoo Security Reporter: Sam James <sam>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: minor CC: bman, sam, zlogene
Priority: Normal Flags: nattka: sanity-check+
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://www.wireshark.org/security/wnpa-sec-2021-04
Whiteboard: B3 [glsa+ cve]
Package list:
net-analyzer/wireshark-3.4.5
 Runtime testing required: ---

Comment 1 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-05-04 21:27:14 UTC 
x86 done
Comment 2 Agostino Sarubbo gentoo-dev 2021-05-05 12:14:41 UTC 
amd64 stable
Comment 3 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-05-06 09:57:24 UTC 
arm done
Comment 4 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-05-06 10:01:16 UTC 
arm64 done
Comment 5 Sam James archtester Gentoo Infrastructure gentoo-dev Security 2021-05-06 10:09:12 UTC 
ppc64 done

all arches done
Comment 6 GLSAMaker/CVETool Bot gentoo-dev 2021-07-09 02:57:05 UTC 
This issue was resolved and addressed in
 GLSA 202107-21 at https://security.gentoo.org/glsa/202107-21
by GLSA coordinator Sam James (sam_c).