VDB

CVE-2019-13619

CVE-2019-13619 PUBLISHED

In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer increments.

EPSS 7.73% · 92.1th percentile

Risk Scores

EPSS Score
7.73%
92.1th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSwireshark2.2.6+g32dac6a-2ubuntu0.16.04, 2.6.3-1~ubuntu16.04.1, 2.6.5-1~ubuntu16.04.0
Ubuntu:18.04:LTSwireshark2.4.2-1, 2.4.3-1, 2.4.4-1
Ubuntu:Pro:14.04:LTSwireshark0, 1.10.3-1, 1.10.5-1ubuntu1

Timeline

  • Jul 17, 2019 CVE Published
  • Apr 14, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
  • Jan 8, 2023 EPSS Score
  • Mar 11, 2023 EPSS Score
  • Jul 14, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›