CVE-2008-3933 in Ubuntu

CVE-2008-3933

Priority

Low

Description

Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to
cause a denial of service (crash) via a packet with crafted zlib-compressed
data that triggers an invalid read in the tvb_uncompress function.

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3933

Package

Source: ethereal (LP Ubuntu Debian)

Upstream:	needs-triage
Ubuntu 8.04 LTS (Hardy Heron):	DNE
Ubuntu 10.04 LTS (Lucid Lynx):	DNE
Ubuntu 11.04 (Natty Narwhal):	DNE
Ubuntu 11.10 (Oneiric Ocelot):	DNE
Ubuntu 12.04 LTS (Precise Pangolin):	DNE

Package

Source: wireshark (LP Ubuntu Debian)

Upstream:	released (1.0.3-1)
Ubuntu 8.04 LTS (Hardy Heron):	ignored (reached end-of-life)
Ubuntu 10.04 LTS (Lucid Lynx):	not-affected (1.0.3-1ubuntu1)
Ubuntu 11.04 (Natty Narwhal):	not-affected (1.0.3-1ubuntu1)
Ubuntu 11.10 (Oneiric Ocelot):	not-affected (1.0.3-1ubuntu1)
Ubuntu 12.04 LTS (Precise Pangolin):	not-affected (1.0.3-1ubuntu1)

More Information

Mitre
NVD
Launchpad
Debian

Updated: 2012-06-01 15:19:03 UTC (commit 5347)