A flaw in the Infiniband dissector could cause Wireshark 1.4.0 through 1.4.9 and 1.6.0 through 1.6.3 to crash by dereferencing a NULL pointer by reading a malformed packet trace file or if someone were to inject a malformed packet onto the wire. This is corrected in wireshark 1.6.3 References: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6476 http://anonsvn.wireshark.org/viewvc?view=revision&revision=39500 External References: http://www.wireshark.org/security/wnpa-sec-2011-18.html
Created wireshark tracking bugs for this issue Affects: fedora-all [bug 750649]
This was assigned the name CVE-2011-4101: http://www.openwall.com/lists/oss-security/2011/11/01/9
Statement: Not vulnerable. This issue did not affect the versions of wireshark as shipped with Red Hat Enterprise Linux 4, 5 and 6.