Bug 836960 (CVE-2012-3825)
| Summary: | CVE-2012-3825 wireshark: Integer overflows in BACapp and Bluetooth HCI dissectors, leading to DoS (wnpa-sec-2012-08) | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | low | Docs Contact: | |
| Priority: | low | ||
| Version: | unspecified | CC: | huzaifas, jsafrane, mzember, phatina, rvokal |
| Target Milestone: | --- | Keywords: | Reopened, Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2015-06-08 20:00:47 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 824426, 994924, 1004712 | ||
| Bug Blocks: | 824434, 974906 | ||
|
Description
Jan Lieskovsky
2012-07-02 10:27:49 UTC
There are essentially two issues in this CVE, one dealing with BACapp and the other with Bluetooth HCI. The Bluetooth HCI dissector issue affects Red Hat Enterprise Linux 6. This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2013:1569 https://rhn.redhat.com/errata/RHSA-2013-1569.html Statement: (none) RHEL-5 is affected by the HCI Bluetooth variant of the bug. Red Hat Enterprise Linux 5 is currently in Phase 3 of its life cycle, during which only Critical impact security issues are expected to get fixed. This Low impact issue will not be considered for exception. |