Infinite Loop in scapy
High severity
GitHub Reviewed
Published
Jul 22, 2019
to the GitHub Advisory Database
•
Updated Aug 31, 2023
Description
Published by the National Vulnerability Database
Jul 19, 2019
Reviewed
Jul 22, 2019
Published to the GitHub Advisory Database
Jul 22, 2019
Last updated
Aug 31, 2023
scapy is affected by a Denial of Service vulnerability resulting in an infinite loop and resource consumption rendering the program unresponsive. The component is:
_RADIUSAttrPacketListField.getfield(self..)
. The attack vector is over the network or in a pcap. both work.References