Bug 639486 - (CVE-2010-3445) CVE-2010-3445 wireshark: stack overflow in BER dissector
CVE-2010-3445 wireshark: stack overflow in BER dissector
Status: CLOSED ERRATA
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
public=20100913,reported=20100913,sou...
: Security
Depends On: 549582 612240 657534 657535 676781 682932 833994
Blocks:
  Show dependency treegraph
 
Reported: 2010-10-01 17:46 EDT by Vincent Danen
Modified: 2015-08-19 04:56 EDT (History)
4 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2012-06-20 11:43:25 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:


Attachments (Terms of Use)

  None (edit)
Description Vincent Danen 2010-10-01 17:46:20 EDT
It was reported [1] that all of the BER dissectors in Wireshark were vulnerable to a stack overflow, which would cause Wireshark to crash.  The upstream bugzilla [2] includes a capture file that triggers the recursion in dissect_ber_unknown() to demonstrate the flaw.  This has been corrected upstream [3] and is scheduled to be included in the forthcoming 1.4.1 and 1.2.12 releases.

[1] http://archives.neohapsis.com/archives/bugtraq/2010-09/0088.html
[2] https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5230
[3] http://anonsvn.wireshark.org/viewvc?view=rev&revision=34111
Comment 4 errata-xmlrpc 2010-11-30 13:32:41 EST
This issue has been addressed in following products:

  Red Hat Enterprise Linux 6

Via RHSA-2010:0924 https://rhn.redhat.com/errata/RHSA-2010-0924.html
Comment 5 Vincent Danen 2010-11-30 13:52:56 EST
Statement:

The Red Hat Security Response Team has rated this issue as having low security impact, a future update to wireshark in Red Hat Enterprise Linux 4 and 5 may address this flaw.

This issue was addressed in Red Hat Enterprise Linux 6 via https://rhn.redhat.com/errata/RHSA-2010-0924.html.
Comment 6 Huzaifa S. Sidhpurwala 2011-03-03 04:19:39 EST
Created wireshark tracking bugs for this issue

Affects: fedora-all [bug 676781]
Comment 7 Huzaifa S. Sidhpurwala 2011-03-03 04:29:03 EST
Created wireshark tracking bugs for this issue

Affects: fedora-all [bug 676781]
Comment 9 errata-xmlrpc 2011-03-21 15:39:34 EDT
This issue has been addressed in following products:

  Red Hat Enterprise Linux 4
  Red Hat Enterprise Linux 5

Via RHSA-2011:0370 https://rhn.redhat.com/errata/RHSA-2011-0370.html

Note You need to log in before you can comment on or make changes to this bug.