Bug 710097 (CVE-2011-2174)
|Summary:||CVE-2011-2174 wireshark: Double-free flaw by uncompressing of a zlib compressed packet|
|Product:||[Other] Security Response||Reporter:||Jan Lieskovsky <jlieskov>|
|Component:||vulnerability||Assignee:||Red Hat Product Security <security-response-team>|
|Status:||CLOSED ERRATA||QA Contact:|
|Version:||unspecified||CC:||bressers, huzaifas, jsafrane, rvokal|
|Fixed In Version:||Doc Type:||Bug Fix|
|Doc Text:||Story Points:||---|
|Last Closed:||2012-04-23 17:41:18 UTC||Type:||---|
|oVirt Team:||---||RHEL 7.3 requirements from Atomic Host:|
|Cloudforms Team:||---||Target Upstream Version:|
|Bug Depends On:||809045, 809046|
Description Jan Lieskovsky 2011-06-02 12:51:41 UTC
A double free flaw was found in the way Wireshark uncompressed a zlib compressed packet inside a message of tvbuff buffer. A remote attacker could create a specially-crafted capture file, which once opened, by a local, unsuspecting user could lead to wireshark application crash. References:  https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5908 (upstream bug report, not public)  http://www.openwall.com/lists/oss-security/2011/05/31/20 (CVE request)  http://www.wireshark.org/security/wnpa-sec-2011-07.html (upstream advisory) Upstream patch:  http://anonsvn.wireshark.org/viewvc?view=revision&revision=37081
Comment 1 Jan Lieskovsky 2011-06-02 12:55:16 UTC
This issue did NOT affect the versions of the wireshark package, as shipped with Red Hat Enterprise Linux 4 and 5. This issue affects the versions of the wireshark package, as shipped with Red Hat Enterprise Linux 6. -- This issue affects the versions of the wireshark package, as shipped with Fedora release of 13, 14 and 15.
Comment 4 errata-xmlrpc 2012-04-23 16:52:18 UTC
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2012:0509 https://rhn.redhat.com/errata/RHSA-2012-0509.html
Comment 5 Vincent Danen 2012-04-23 17:41:18 UTC
Current Fedora has wireshark 1.4.12 which is not affected by this flaw.
Comment 6 Vincent Danen 2012-04-23 17:42:21 UTC
Statement: This issue did not affect the version of wireshark as shipped with Red Hat Enterprise Linux 4 and 5.