CVE-2015-3906

Publication date 26 May 2015

Last updated 24 July 2024


Ubuntu priority

The logcat_dump_text function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not properly handle a lack of \0 termination, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted message in a packet, a different vulnerability than CVE-2015-3815.

Status

Package Ubuntu Release Status
wireshark 15.04 vivid
Fixed 1.12.1+g01b65bf-4+deb8u1
14.10 utopic Ignored end of life
14.04 LTS trusty
Not affected
12.04 LTS precise
Not affected

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
wireshark