{"id":"AZL-44337","summary":"CVE-2024-24479 affecting package wireshark for versions less than 4.4.7-1","details":"A Buffer Overflow in Wireshark before 4.2.0 allows a remote attacker to cause a denial of service via the wsutil/to_str.c, and format_fractional_part_nsecs components. NOTE: this is disputed by the vendor because neither release 4.2.0 nor any other release was affected.","modified":"2026-04-21T04:18:14.880544Z","published":"2024-02-21T19:15:09Z","upstream":["CVE-2024-24479"],"references":[{"type":"WEB","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-24479"}],"affected":[{"package":{"name":"wireshark","ecosystem":"Azure Linux:3","purl":"pkg:rpm/azure-linux/wireshark"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.4.7-1"}]}],"database_specific":{"source":"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-44337.json"}}],"schema_version":"1.7.5"}