Red Hat Bugzilla – Bug 1007192
CVE-2013-5720 wireshark: RTPS dissector crash (wnpa-sec-2013-57)
Last modified: 2015-10-15 14:00:23 EDT
Ben Schmidt discovered a buffer overflow flaw in the Wireshark RTPS dissector. Wireshark could crash if it read a malformed packet off a network, or opened a malicious dump file. This issue affects Wireshark versions 1.10.0 to 1.10.1 and 1.8.0 to 1.8.9. It is fixed in versions 1.10.2 and 1.8.10.
Created wireshark tracking bugs for this issue:
Affects: fedora-all [bug 1007261]
Upstream bug: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9019 (currently closed)
Not Vulnerable. This issue does not affect the version of wireshark as shipped with Red Hat Enterprise Linux 5 and 6.
This issue affects the version of wireshark as shipped with Fedora 18 and 19.
I dont have access to the closed bug or the cap file, so this one will need to be SanityOnly