Candidate: CVE-2010-2995
PublicDate: 2010-08-13 18:43:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2995
 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=4837
Description:
 The SigComp Universal Decompressor Virtual Machine (UDVM) in Wireshark
 0.10.8 through 1.0.14 and 1.2.0 through 1.2.9 allows remote attackers to
 cause a denial of service (crash) and possibly execute arbitrary code via
 vectors related to sigcomp-udvm.c and an off-by-one error, which triggers a
 buffer overflow, different vulnerabilities than CVE-2010-2287.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_wireshark:
 upstream: http://anonsvn.wireshark.org/viewvc?view=revision&revision=33087
upstream_wireshark: released (1.2.10)
dapper_wireshark: DNE
hardy_wireshark: ignored (reached end-of-life)
jaunty_wireshark: ignored (reached end-of-life)
karmic_wireshark: ignored (reached end-of-life)
lucid_wireshark: ignored (reached end-of-life)
maverick_wireshark: not-affected (1.2.10-1)
natty_wireshark: not-affected (1.2.10-1)
oneiric_wireshark: not-affected (1.2.10-1)
precise_wireshark: not-affected (1.2.10-1)
quantal_wireshark: not-affected (1.2.10-1)
raring_wireshark: not-affected (1.2.10-1)
saucy_wireshark: not-affected (1.2.10-1)
devel_wireshark: not-affected (1.2.10-1)

Patches_ethereal:
upstream_ethereal: released (1.0.15)
dapper_ethereal: ignored (reached end-of-life)
hardy_ethereal: DNE
jaunty_ethereal: DNE
karmic_ethereal: DNE
lucid_ethereal: DNE
maverick_ethereal: DNE
natty_ethereal: DNE
oneiric_ethereal: DNE
precise_ethereal: DNE
quantal_ethereal: DNE
raring_ethereal: DNE
saucy_ethereal: DNE
devel_ethereal: DNE