CVE-2008-3933
Published: 4 September 2008
Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service (crash) via a packet with crafted zlib-compressed data that triggers an invalid read in the tvb_uncompress function.
Priority
Status
Package | Release | Status |
---|---|---|
ethereal Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
feisty |
Does not exist
|
|
gutsy |
Does not exist
|
|
hardy |
Does not exist
|
|
intrepid |
Does not exist
|
|
jaunty |
Does not exist
|
|
karmic |
Does not exist
|
|
lucid |
Does not exist
|
|
maverick |
Does not exist
|
|
natty |
Does not exist
|
|
oneiric |
Does not exist
|
|
upstream |
Needs triage
|
|
wireshark Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
feisty |
Ignored
(end of life, was needed)
|
|
gutsy |
Ignored
(end of life, was needed)
|
|
hardy |
Ignored
(end of life)
|
|
intrepid |
Not vulnerable
(1.0.3-1ubuntu1)
|
|
jaunty |
Not vulnerable
(1.0.3-1ubuntu1)
|
|
karmic |
Not vulnerable
(1.0.3-1ubuntu1)
|
|
lucid |
Not vulnerable
(1.0.3-1ubuntu1)
|
|
maverick |
Not vulnerable
(1.0.3-1ubuntu1)
|
|
natty |
Not vulnerable
(1.0.3-1ubuntu1)
|
|
oneiric |
Not vulnerable
(1.0.3-1ubuntu1)
|
|
upstream |
Released
(1.0.3-1)
|