Common Vulnerabilities and Exposures assigned an identifier CVE-2011-1140 to the following vulnerability: Name: CVE-2011-1140 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1140 Assigned: 20110302 Reference: CONFIRM:http://anonsvn.wireshark.org/viewvc?view=rev&revision=36029 Reference: CONFIRM:http://www.wireshark.org/docs/relnotes/wireshark-1.2.15.html Reference: CONFIRM:http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html Reference: CONFIRM:http://www.wireshark.org/security/wnpa-sec-2011-03.html Reference: CONFIRM:http://www.wireshark.org/security/wnpa-sec-2011-04.html Reference: CONFIRM:https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5717 Multiple stack consumption vulnerabilities in the dissect_ms_compressed_string and dissect_mscldap_string functions in Wireshark 1.0.x, 1.2.0 through 1.2.14, and 1.4.0 through 1.4.3 allow remote attackers to cause a denial of service (infinite recursion) via a crafted (1) SMB or (2) Connection-less LDAP (CLDAP) packet.
Created wireshark tracking bugs for this issue Affects: fedora-all [bug 676781]
This issue has been addressed in following products: Red Hat Enterprise Linux 6 Via RHSA-2011:0369 https://rhn.redhat.com/errata/RHSA-2011-0369.html
This issue has been addressed in following products: Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5 Via RHSA-2011:0370 https://rhn.redhat.com/errata/RHSA-2011-0370.html