Red Hat Bugzilla – Bug 590613
CVE-2010-1455 wireshark: DOCSIS dissector crash
Last modified: 2015-07-31 02:26:36 EDT
Upstream wireshark versions 1.0.13 and 1.2.8 fix a flaw in the DOCSIS dissector. This dissector used incorrect format string specified when printing certain values (%s was used to print numeric values, causing numeric value to be used as pointer), which could cause wireshark to crash or create garbaged output.
Upstream bug reports:
As the impact of this flaw is limited to application crash, this rated as having low security impact and the issue may get addressed in future wireshark updates in Red Hat Enterprise Linux 3, 4 and 5.
The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw.
This issue has been addressed in following products:
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Red Hat Enterprise Linux 5
Via RHSA-2010:0625 https://rhn.redhat.com/errata/RHSA-2010-0625.html