Candidate: CVE-2012-0042
PublicDate: 2012-04-11 10:39:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0042
 http://www.wireshark.org/security/wnpa-sec-2012-02.html
Description:
 Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 does not properly
 perform certain string conversions, which allows remote attackers to cause
 a denial of service (NULL pointer dereference and application crash) via a
 crafted packet, related to epan/to_str.c.
Ubuntu-Description: 
Notes: 
Bugs: 
 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6634
Priority: low
Discovered-by:
Assigned-to: 
CVSS: 

Patches_wireshark:
upstream_wireshark: released (1.4.11,1.6.5)
hardy_wireshark: ignored (reached end-of-life)
lucid_wireshark: ignored (reached end-of-life)
maverick_wireshark: released (1.2.11-6+squeeze6build0.10.10.1)
natty_wireshark: ignored (reached end-of-life)
oneiric_wireshark: ignored (reached end-of-life)
precise_wireshark: not-affected (1.6.5-1)
quantal_wireshark: not-affected (1.6.5-1)
raring_wireshark: not-affected (1.6.5-1)
saucy_wireshark: not-affected (1.6.5-1)
devel_wireshark: not-affected (1.6.5-1)