CVE-2023-2879: 
Wireshark vulnerability analysis and mitigation

GDSDB infinite loop vulnerability in Wireshark versions 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 was discovered, tracked as CVE-2023-2879. The vulnerability allows denial of service attacks through packet injection or crafted capture file manipulation. The issue was identified on May 24, 2023, and was fixed in versions 4.0.6 and 3.6.14 (Wireshark Advisory).

The vulnerability is classified as an infinite loop condition (CWE-835) in the GDSDB dissector component of Wireshark. It received a CVSS v3.1 base score of 7.5 (HIGH) with vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H, indicating network accessibility with low attack complexity and no required privileges or user interaction (NVD).

The primary impact of this vulnerability is the potential for denial of service attacks. When exploited, it can cause Wireshark to consume excessive CPU resources, effectively making the application unresponsive (Wireshark Advisory).

The recommended mitigation is to upgrade to Wireshark versions 4.0.6, 3.6.14, or later. Multiple Linux distributions have released security updates to address this vulnerability, including Debian with version 4.0.6-1~deb12u1 and Gentoo with version 4.0.6 (Debian Advisory, Gentoo Advisory).