Launchpad.net

CVE 2008-3145

The fragment_add_work function in epan/reassemble.c in Wireshark 0.8.19 through 1.0.1 allows remote attackers to cause a denial of service (crash) via a series of fragmented packets with non-sequential fragmentation offset values, which lead to a buffer over-read.

Related bugs and status

CVE-2008-3145 (Candidate) is related to these bugs:

Bug #245774: Wireshark 1.0.2 fixes multiple vulnerabilities

Summary				In	Importance	Status
	245774	Wireshark 1.0.2 fixes multiple vulnerabilities		wireshark (Ubuntu)	Medium	Fix Released
	245774	Wireshark 1.0.2 fixes multiple vulnerabilities		Wireshark	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.wireshark.o...
CONFIRM: https://bugs.wireshark...
CONFIRM: https://bugzilla.redha...
FEDORA: FEDORA-2008-6440
MANDRIVA: MDVSA-2008:152
BID: 30181
SECTRACK: 1020471
SECUNIA: 31044
SECUNIA: 31085
CONFIRM: http://wiki.rpath.com/...
CONFIRM: https://issues.rpath.c...
GENTOO: GLSA-200808-04
SUSE: SUSE-SR:2008:017
SECUNIA: 31257
SECUNIA: 31378
SECUNIA: 31687
REDHAT: RHSA-2008:0890
SECUNIA: 32091
DEBIAN: DSA-1673
SECUNIA: 32944
CONFIRM: http://support.avaya.c...
VUPEN: ADV-2008-2057
VUPEN: ADV-2008-2773
CONFIRM: http://anonsvn.wiresha...
XF: wireshark-packets-dos(...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20080729 rPSA-2008-023...