CVE-2013-4929

Published: 30 July 2013

The parseFields function in epan/dissectors/packet-dis-pdus.c in the DIS dissector in Wireshark 1.8.x before 1.8.9 and 1.10.x before 1.10.1 does not terminate packet-data processing after finding zero remaining bytes, which allows remote attackers to cause a denial of service (loop) via a crafted packet.

Priority

Negligible

Status

Package Release Status
wireshark
Launchpad, Ubuntu, Debian
Upstream
Released (1.10.1-1)
Ubuntu 16.04 LTS (Xenial Xerus) Not vulnerable
(1.10.6-1)
Ubuntu 14.04 ESM (Trusty Tahr) Not vulnerable
(1.10.6-1)