Infinite loop denial of service flaws were reported against various Wireshark dissectors: [1] https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6805 (802.11) [2] https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7118 (802.3) [3] https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7119 (ANSIMAP) [4] https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7120 (ASF) [5] https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7124 (LTP) A remote attacker could provide a specially-crafted packet capture file, which once opened in Wireshark could lead to denial of service. Upstream advisory: [6] http://www.wireshark.org/security/wnpa-sec-2012-08.html
Created wireshark tracking bugs for this issue Affects: fedora-all [bug 824426]
CVE Request: [10] http://www.openwall.com/lists/oss-security/2012/05/23/10
Added CVE as per http://www.openwall.com/lists/oss-security/2012/05/23/17
IPMI dissector case yet: [11] https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7123
From the list of affected dissectors mentioned in comment #0, only 2 of them affect the version of wireshark shipped with Red Hat Enterprise Linux 6, namely the ANSIMAP and HCIEVT are affected only.
Additional two CVE identifiers have been assigned to set of dissector flaws, as originally listed in this bugzilla: 1) CVE-2012-3825 (bug #836960) for the BACapp and Bluetooth HCI case, 2) CVE-2012-3826 (bug #836961) for the R3 dissector case. The CVE-2012-2392 CVE identifier got described as follows: ---------------------------------------------------------- Wireshark 1.4.x before 1.4.13 and 1.6.x before 1.6.8 allows remote attackers to cause a denial of service (infinite loop) via vectors related to the (1) ANSI MAP, (2) ASF, (3) IEEE 802.11, (4) IEEE 802.3, and (5) LTP dissectors. with references: ---------------- http://www.wireshark.org/security/wnpa-sec-2012-08.html https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6805 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7118 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7119 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7120 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7124
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2013:1569 https://rhn.redhat.com/errata/RHSA-2013-1569.html
Statement: (none)