Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2014-4020

The dissect_frame function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended to represent an error condition, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

Related bugs and status

CVE-2014-4020 (Candidate) is related to these bugs:

Bug #1567407: [SRU] Update to bugfix release 1.10.14 in Trusty

Summary				In	Importance	Status
	1567407	[SRU] Update to bugfix release 1.10.14 in Trusty		wireshark (Ubuntu)	Undecided	Expired

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.wireshark.o...
CONFIRM: https://bugs.wireshark...
CONFIRM: https://bugs.wireshark...
CONFIRM: https://code.wireshark...
SUSE: openSUSE-SU-2014:0836