CVE-2021-39922
- Source
- https://cve.org/CVERecord?id=CVE-2021-39922
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-39922.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-39922
- Downstream
- Related
- Published
- 2021-11-19T17:15:08.400Z
- Modified
- 2026-04-11T12:37:12.546527Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
- Database specific
{ "unresolved_ranges": [ { "source": "CPE_FIELD", "cpe": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "10.0" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "11.0" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "9.0" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "34" } ] }, { "source": "CPE_FIELD", "cpe": "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*", "extracted_events": [ { "last_affected": "35" } ] } ] }- References
-
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A6AJFIYIHS3TYDD2EBYBJ5KKE52X34BJ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YEWTIRMC2MFQBZ2O5M4CJHJM4JPBHLXH/
- https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-39922.json
- https://lists.debian.org/debian-lts-announce/2021/12/msg00015.html
- https://security.gentoo.org/glsa/202210-04
- https://www.debian.org/security/2021/dsa-5019
- https://www.wireshark.org/security/wnpa-sec-2021-12.html
- https://gitlab.com/wireshark/wireshark/-/issues/17636
Affected packages
Git / github.com/wireshark/wireshark
Affected ranges
- Type
- GIT
- Repo
- https://github.com/wireshark/wireshark
- Events
-
IntroducedLast affectedIntroducedLast affected
- Database specific
{ "source": "CPE_FIELD", "cpe": "cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*", "extracted_events": [ { "introduced": "3.2.0" }, { "last_affected": "3.2.17" }, { "introduced": "3.4.0" }, { "last_affected": "3.4.9" } ] }
Affected versions
v3.*
v3.2.0
v3.2.1
v3.2.10
v3.2.10rc0
v3.2.11
v3.2.11rc0
v3.2.12
v3.2.12rc0
v3.2.13
v3.2.13rc0
v3.2.14
v3.2.14rc0
v3.2.15
v3.2.15rc0
v3.2.16
v3.2.16rc0
v3.2.17
v3.2.17rc0
v3.2.1rc0
v3.2.2
v3.2.2rc0
v3.2.3
v3.2.3rc0
v3.2.4
v3.2.4rc0
v3.2.5
v3.2.5rc0
v3.2.6
v3.2.6rc0
v3.2.7
v3.2.7rc0
v3.2.8
v3.2.8rc0
v3.2.9
v3.2.9rc0
v3.4.0
v3.4.1
v3.4.1rc0
v3.4.2
v3.4.2rc0
v3.4.3
v3.4.3rc0
v3.4.4
v3.4.4rc0
v3.4.5
v3.4.5rc0
v3.4.6
v3.4.6rc0
v3.4.7
v3.4.7rc0
v3.4.8
v3.4.8rc0
v3.4.9
v3.4.9rc0
wireshark-3.*
wireshark-3.2.0
wireshark-3.2.1
wireshark-3.2.10
wireshark-3.2.11
wireshark-3.2.12
wireshark-3.2.13
wireshark-3.2.14
wireshark-3.2.15
wireshark-3.2.16
wireshark-3.2.17
wireshark-3.2.2
wireshark-3.2.3
wireshark-3.2.4
wireshark-3.2.5
wireshark-3.2.6
wireshark-3.2.7
wireshark-3.2.8
wireshark-3.2.9
wireshark-3.4.0
wireshark-3.4.1
wireshark-3.4.2
wireshark-3.4.3
wireshark-3.4.4
wireshark-3.4.5
wireshark-3.4.6
wireshark-3.4.7
wireshark-3.4.8
wireshark-3.4.9