A flaw was found in Wireshark 2.6.0, the IEEE 802.11 protocol dissector could crash. It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. This was addressed in epan/crypt/dot11decrypt.c by avoiding a buffer overflow during FTE processing in Dot11DecryptTDLSDeriveKey.
Created wireshark tracking bugs for this issue:
Affects: fedora-all [bug 1581754]
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):