CVE-2017-17084

Description

In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the IWARP_MPA dissector could crash. This was addressed in epan/dissectors/packet-iwarp-mpa.c by validating a ULPDU length.

Affected packages (2)

• Alpine/wiresharkfrom 0, < 2.2.11-r0
• Debian/wiresharkfrom 0, < 2.4.3-1

CVSS scores

References (2)

• ADVISORYhttps://security.alpinelinux.org/vuln/CVE-2017-17084
• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2017-17084