Red Hat Bugzilla – Bug 965110
wireshark: DoS (large loop) in the ETCH dissector (wnpa-sec-2013-31, upstream #8464)
Last modified: 2015-07-31 07:51:35 EDT
A denial of service flaw was found in the way ETCH dissector of Wireshark, a network traffic analyzer, processed certain ETCH packet capture files. A remote attacker could provide a specially-crafted ETCH packet capture file that, when processed, would lead to wireshark executable to enter large loop (denial of service) when trying to dissect that file.
Upstream bug report:
The version of wireshark shipped with Red Hat Enterprise Linux 5 and 6 does not have support for Apache Etch Protocol.
Not Vulnerable. This issue does not affect the version of wireshark as shipped with Red Hat Enterprise Linux 5 and 6.
Created wireshark tracking bugs for this issue
Affects: fedora-18 [bug 965942]
*** This bug has been marked as a duplicate of bug 966331 ***