CVE-2021-4184
- Source
- https://cve.org/CVERecord?id=CVE-2021-4184
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-4184.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-4184
- Downstream
- Related
- Published
- 2021-12-30T22:15:10.307Z
- Modified
- 2026-05-18T05:55:17.015923824Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file
- Database specific
{ "unresolved_ranges": [ { "source": "CPE_FIELD", "cpes": [ "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" ], "extracted_events": [ { "last_affected": "9.0" } ], "vendor_product": "debian:debian_linux" }, { "source": "CPE_FIELD", "extracted_events": [ { "last_affected": "34" }, { "last_affected": "35" } ], "cpes": [ "cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*", "cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*" ], "vendor_product": "fedoraproject:fedora" }, { "source": "CPE_FIELD", "cpes": [ "cpe:2.3:a:oracle:http_server:12.2.1.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:oracle:http_server:12.2.1.4.0:*:*:*:*:*:*:*" ], "extracted_events": [ { "last_affected": "12.2.1.3.0" }, { "last_affected": "12.2.1.4.0" } ], "vendor_product": "oracle:http_server" }, { "source": "CPE_FIELD", "cpes": [ "cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*" ], "extracted_events": [ { "last_affected": "8.8" } ], "vendor_product": "oracle:zfs_storage_appliance_kit" } ] }- References
-
- https://lists.debian.org/debian-lts-announce/2024/09/msg00049.html
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q6XGBKWSQFCVYUN4ZK3O3NJIFP3OAFVT/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R5AEK3XTOIOGCGUILUFISMGX54YJXWGJ/
- https://gitlab.com/gitlab-org/cves/-/blob/master/2021/CVE-2021-4184.json
- https://lists.debian.org/debian-lts-announce/2022/03/msg00041.html
- https://security.gentoo.org/glsa/202210-04
- https://www.oracle.com/security-alerts/cpuapr2022.html
- https://www.wireshark.org/security/wnpa-sec-2021-18.html
- https://gitlab.com/wireshark/wireshark/-/issues/17754
Affected packages
Git / github.com/wireshark/wireshark
Affected ranges
- Type
- GIT
- Repo
- https://github.com/wireshark/wireshark
- Events
-
IntroducedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "cpe": [ "cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*", "cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*" ], "source": "CPE_FIELD", "extracted_events": [ { "introduced": "3.4.0" }, { "last_affected": "3.4.10" }, { "introduced": "0" }, { "last_affected": "3.6.0" } ] }
Affected versions
Other
backups/ethereal@18706
ethereal-0-3-15
start
ethereal-0.*
ethereal-0.3.15
v1.*
v1.11.0
v1.11.0-rc1
v1.11.1
v1.11.1-rc1
v1.11.2
v1.11.2-rc1
v1.11.3
v1.11.3-rc1
v1.11.4-rc1
v1.99.0
v1.99.0-rc1
v1.99.1
v1.99.10rc0
v1.99.1rc0
v1.99.2
v1.99.2rc0
v1.99.3
v1.99.3rc0
v1.99.4
v1.99.4rc0
v1.99.5
v1.99.5rc0
v1.99.6
v1.99.6rc0
v1.99.7
v1.99.7rc0
v1.99.8
v1.99.8rc0
v1.99.9
v1.99.9rc0
v2.*
v2.1.0
v2.1.0rc0
v2.1.1
v2.1.1rc0
v2.1.2rc0
v2.3.0rc0
v2.5.0
v2.5.0rc0
v2.5.1
v2.5.1rc0
v2.5.2rc0
v2.9.0
v2.9.0rc0
v2.9.1rc0
v3.*
v3.1.0
v3.1.0rc0
v3.1.1
v3.1.1rc0
v3.1.2rc0
v3.3.0
v3.3.0rc0
v3.3.1
v3.3.1rc0
v3.3.2rc0
v3.4.0
v3.4.1
v3.4.10
v3.4.10rc0
v3.4.1rc0
v3.4.2
v3.4.2rc0
v3.4.3
v3.4.3rc0
v3.4.4
v3.4.4rc0
v3.4.5
v3.4.5rc0
v3.4.6
v3.4.6rc0
v3.4.7
v3.4.7rc0
v3.4.8
v3.4.8rc0
v3.4.9
v3.4.9rc0
v3.5.0
v3.5.0rc0
v3.5.1rc0
v3.6.0
v3.6.0rc0
v3.6.0rc1
v3.6.0rc2
v3.6.0rc3
wireshark-1.*
wireshark-1.11.3
wireshark-1.99.0
wireshark-1.99.1
wireshark-1.99.2
wireshark-1.99.3
wireshark-1.99.4
wireshark-1.99.5
wireshark-1.99.6
wireshark-1.99.7
wireshark-1.99.8
wireshark-1.99.9
wireshark-2.*
wireshark-2.1.0
wireshark-2.1.1
wireshark-2.5.0
wireshark-3.*
wireshark-3.4.0
wireshark-3.4.1
wireshark-3.4.10
wireshark-3.4.2
wireshark-3.4.3
wireshark-3.4.4
wireshark-3.4.5
wireshark-3.4.6
wireshark-3.4.7
wireshark-3.4.8
wireshark-3.4.9
wireshark-3.6.0
Git / gitlab.com/wireshark/wireshark
Affected ranges
- Type
- GIT
- Repo
- https://gitlab.com/wireshark/wireshark
- Events
-
IntroducedLast affectedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "cpe": [ "cpe:2.3:a:wireshark:wireshark:*:*:*:*:*:*:*:*", "cpe:2.3:a:wireshark:wireshark:3.6.0:*:*:*:*:*:*:*" ], "source": "CPE_FIELD", "extracted_events": [ { "introduced": "3.4.0" }, { "last_affected": "3.4.10" }, { "introduced": "0" }, { "last_affected": "3.6.0" } ] }
Affected versions
Other
backups/ethereal@18706
ethereal-0-3-15
start
ethereal-0.*
ethereal-0.3.15
v1.*
v1.11.0
v1.11.0-rc1
v1.11.1
v1.11.1-rc1
v1.11.2
v1.11.2-rc1
v1.11.3
v1.11.3-rc1
v1.11.4-rc1
v1.99.0
v1.99.0-rc1
v1.99.1
v1.99.10rc0
v1.99.1rc0
v1.99.2
v1.99.2rc0
v1.99.3
v1.99.3rc0
v1.99.4
v1.99.4rc0
v1.99.5
v1.99.5rc0
v1.99.6
v1.99.6rc0
v1.99.7
v1.99.7rc0
v1.99.8
v1.99.8rc0
v1.99.9
v1.99.9rc0
v2.*
v2.1.0
v2.1.0rc0
v2.1.1
v2.1.1rc0
v2.1.2rc0
v2.3.0rc0
v2.5.0
v2.5.0rc0
v2.5.1
v2.5.1rc0
v2.5.2rc0
v2.9.0
v2.9.0rc0
v2.9.1rc0
v3.*
v3.1.0
v3.1.0rc0
v3.1.1
v3.1.1rc0
v3.1.2rc0
v3.3.0
v3.3.0rc0
v3.3.1
v3.3.1rc0
v3.3.2rc0
v3.4.0
v3.4.1
v3.4.10
v3.4.10rc0
v3.4.1rc0
v3.4.2
v3.4.2rc0
v3.4.3
v3.4.3rc0
v3.4.4
v3.4.4rc0
v3.4.5
v3.4.5rc0
v3.4.6
v3.4.6rc0
v3.4.7
v3.4.7rc0
v3.4.8
v3.4.8rc0
v3.4.9
v3.4.9rc0
v3.5.0
v3.5.0rc0
v3.5.1rc0
v3.6.0
v3.6.0rc0
v3.6.0rc1
v3.6.0rc2
v3.6.0rc3
wireshark-1.*
wireshark-1.11.3
wireshark-1.99.0
wireshark-1.99.1
wireshark-1.99.2
wireshark-1.99.3
wireshark-1.99.4
wireshark-1.99.5
wireshark-1.99.6
wireshark-1.99.7
wireshark-1.99.8
wireshark-1.99.9
wireshark-2.*
wireshark-2.1.0
wireshark-2.1.1
wireshark-2.5.0
wireshark-3.*
wireshark-3.4.0
wireshark-3.4.1
wireshark-3.4.10
wireshark-3.4.2
wireshark-3.4.3
wireshark-3.4.4
wireshark-3.4.5
wireshark-3.4.6
wireshark-3.4.7
wireshark-3.4.8
wireshark-3.4.9
wireshark-3.6.0