CVE-2021-39929

December 11, 2021

Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Summary:

Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Reference Links(if available):

  • https://gitlab.com/wireshark/wireshark/-/issues/17651
  • https://www.wireshark.org/security/wnpa-sec-2021-07.html
  • https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39929.json
  • https://lists.fedoraproject.org/archives/list/[email protected]/message/A6AJFIYIHS3TYDD2EBYBJ5KKE52X34BJ/
  • https://lists.fedoraproject.org/archives/list/[email protected]/message/YEWTIRMC2MFQBZ2O5M4CJHJM4JPBHLXH/

    • CVSS Score (if available)

    v2: / MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P

    v3: / HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

    Links to Exploits(if available)

  • You may have missed

    hackerone

    HackerOne Bug Bounty Disclosure: availability-impact-from-exploiting-project-name-vulnerabilities-mr-root

    November 13, 2024
    hackerone

    HackerOne Bug Bounty Disclosure: idor-in-backup-recovery-functionality-theelgo

    November 13, 2024
    hackerone

    HackerOne Bug Bounty Disclosure: can-see-phone-numbers-of-others-by-providing-mail-address-sevada

    November 13, 2024
    image

    [BRAINCIPHER] – Ransomware Victim: G-One Auto Parts de México S[.]A[.] de C[.]V[.]

    November 13, 2024
    image

    [BRAINCIPHER] – Ransomware Victim: COOPERATIVA TELEFONICA DE CALAFATE LTD[.]

    November 13, 2024