Resource Management Errors The advisory has been revoked - it doesn't affect any version of package wireshark  (opens in a new tab)


Threat Intelligence

EPSS
0.34% (72nd percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-UBUNTU1304-WIRESHARK-646734
  • published10 Sept 2020
  • disclosed11 Apr 2012

Introduced: 11 Apr 2012

CVE-2012-1595  (opens in a new tab)
CWE-399  (opens in a new tab)

Amendment

The Ubuntu security team deemed this advisory irrelevant for Ubuntu:13.04.

NVD Description

Note: Versions mentioned in the description apply only to the upstream wireshark package and not the wireshark package as distributed by Ubuntu.

The pcap_process_pseudo_header function in wiretap/pcap-common.c in Wireshark 1.4.x before 1.4.12 and 1.6.x before 1.6.6 allows remote attackers to cause a denial of service (application crash) via a WTAP_ENCAP_ERF file containing an Extension or Multi-Channel header with an invalid pseudoheader size, related to the pcap and pcap-ng file parsers.