Red Hat Bugzilla – Bug 848575
CVE-2012-4292 wireshark: crash in STUN dissector (wnpa-sec-2012-21)
Last modified: 2015-08-19 05:17:46 EDT
It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
Affects 1.4.0 to 1.4.14, 1.6.0 to 1.6.9, 1.8.0 to 1.8.1 and is fixed in upstream 1.8.2, 1.6.10, and 1.4.15 versions.
Created wireshark tracking bugs for this issue
Affects: fedora-all [bug 848593]
wireshark-1.6.10-1.fc16 has been pushed to the Fedora 16 stable repository. If problems still persist, please make note of it in this bug report.
wireshark-1.6.10-1.fc17 has been pushed to the Fedora 17 stable repository. If problems still persist, please make note of it in this bug report.
This issue has been addressed in following products:
Red Hat Enterprise Linux 6
Via RHSA-2013:1569 https://rhn.redhat.com/errata/RHSA-2013-1569.html