Wind River Support Network

HomeDefectsLIN8-2461
Fixed

LIN8-2461 : Security Advisory - wireshark - CVE-2015-8733

Created: Jan 13, 2016    Updated: Dec 3, 2018
Resolved Date: Jan 27, 2016
Found In Version: 8.0
Fix Version: 8.0.0.2
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Userspace

Description

The ngsniffer_process_record function in wiretap/ngsniffer.c in the Sniffer file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the relationships between record lengths and record header lengths, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8733

Other Downloads


CVEs


Live chat
Online