Bug 1044509 (CVE-2013-7113)
| Summary: | CVE-2013-7113 wireshark: BSSGP dissector could crash (wnpa-sec-2013-67) | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Ratul Gupta <ratulg> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED NOTABUG | QA Contact: | |
| Severity: | low | Docs Contact: | |
| Priority: | low | ||
| Version: | unspecified | CC: | huzaifas, jkurik, lemenkov, pfrields, phatina, rvokal |
| Target Milestone: | --- | Keywords: | Reopened, Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | wireshark 1.10.4 | Doc Type: | Bug Fix |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2013-12-18 18:56:34 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 1044512, 1044662 | ||
| Bug Blocks: | 1044516 | ||
|
Description
Ratul Gupta
2013-12-18 13:22:15 UTC
Created wireshark tracking bugs for this issue: Affects: fedora-all [bug 1044512] Fix was backported to 1.10.3 already. (In reply to Peter Lemenkov from comment #2) > Fix was backported to 1.10.3 That's fantastic news but doesn't mean you can close the bug. Please leave it open. This affects more than Fedora (if Fedora is fixed, feel free to note that in the _Fedora_ bug, not this one). Thanks. External References: http://www.wireshark.org/security/wnpa-sec-2013-67.html This only affects wireshark 1.10.x, so Red Hat Enterprise Linux 6 is not affected. Statement: Not vulnerable. This issue did not affect the versions of wireshark as shipped with Red Hat Enterprise Linux 5 and 6. Upstream patch: http://anonsvn.wireshark.org/viewvc?view=revision&revision=53803 |