Main Vulnerability Database SB2013032620

SB2013032620 - Input validation error in wireshark (Alpine package)

Published: March 26, 2013

Security Bulletin ID SB2013032620

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Input validation error (CVE-ID: CVE-2013-2488)

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

The DTLS dissector in Wireshark 1.6.x before 1.6.14 and 1.8.x before 1.8.6 does not validate the fragment offset before invoking the reassembly state machine, which allows remote attackers to cause a denial of service (application crash) via a large offset value that triggers write access to an invalid memory location.

Remediation

Install update from vendor's website.

References

https://git.alpinelinux.org/aports/commit/?id=613bdb594da5755b5b65dea30c7f2dee397dbdc3
https://git.alpinelinux.org/aports/commit/?id=33110358d3beda6bb2bb1d87269ed6efe5bd2fe8
https://git.alpinelinux.org/aports/commit/?id=a2c3269ad447f4eafb97229af335652819014f69