PublicDate: 2008-09-02 14:24:00 UTC
Candidate: CVE-2008-3146
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3146
Description:
 Multiple buffer overflows in packet_ncp2222.inc in Wireshark (formerly
 Ethereal) 0.9.7 through 1.0.2 allow attackers to cause a denial of service
 (application crash) and possibly execute arbitrary code via a crafted NCP
 packet that causes an invalid pointer to be used.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_wireshark:
upstream_wireshark: released (1.0.3)
dapper_wireshark: DNE
feisty_wireshark: needed (reached end-of-life)
gutsy_wireshark: needed (reached end-of-life)
hardy_wireshark: ignored (reached end-of-life)
intrepid_wireshark: not-affected (1.0.3-1ubuntu2.2)
jaunty_wireshark: not-affected
karmic_wireshark: not-affected
lucid_wireshark: not-affected
maverick_wireshark: not-affected
natty_wireshark: not-affected
oneiric_wireshark: not-affected
devel_wireshark: not-affected

Patches_ethereal:
upstream_ethereal: needs-triage
dapper_ethereal: ignored (reached end-of-life)
feisty_ethereal: DNE
gutsy_ethereal: DNE
hardy_ethereal: DNE
intrepid_ethereal: DNE
jaunty_ethereal: DNE
karmic_ethereal: DNE
lucid_ethereal: DNE
maverick_ethereal: DNE
natty_ethereal: DNE
oneiric_ethereal: DNE
devel_ethereal: DNE