{"id":"AZL-44619","summary":"CVE-2024-24476 affecting package wireshark for versions less than 4.4.7-1","details":"A buffer overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the pan/addr_resolv.c, and ws_manuf_lookup_str(), size components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.","modified":"2026-04-01T05:16:42.308493Z","published":"2024-02-21T19:15:09Z","upstream":["CVE-2024-24476"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-24476"}],"affected":[{"package":{"name":"wireshark","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/wireshark"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.4.7-1"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-44619.json"}}],"schema_version":"1.7.5"}