First published: Tue Nov 01 2011(Updated: )
An uninitialized variable in the CSN.1 dissector in Wireshark 1.6.0 through 1.6.2 could cause Wireshark to crash by reading a malformed packet trace file or if someone were to inject a malformed packet onto the the wire. This is corrected in wireshark 1.6.3. References: <a href="https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6351">https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6351</a> <a href="http://anonsvn.wireshark.org/viewvc?view=revision&revision=39140">http://anonsvn.wireshark.org/viewvc?view=revision&revision=39140</a> External References: <a href="http://www.wireshark.org/security/wnpa-sec-2011-17.html">http://www.wireshark.org/security/wnpa-sec-2011-17.html</a>
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
Wireshark Wireshark | =1.6.0 | |
Wireshark Wireshark | =1.6.1 | |
Wireshark Wireshark | =1.6.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.