CVE-2024-24478 Information

Description

An issue in Wireshark team Wireshark before v.4.2.0 allows a remote attacker to cause a denial of service via the packet-bgp.c dissect_bgp_open(tvbuff_ttvb proto_treetree packet_infopinfo) optlen components.

Reference

https://github.com/wireshark/wireshark/commit/80a4dc55f4d2fa33c2b36a99406500726d3faaef https://gitlab.com/wireshark/wireshark/-/issues/19347 https://gist.github.com/1047524396/e82c55147cd3cb62ef20cbdb0ec83694