Candidate: CVE-2012-4298
PublicDate: 2012-08-16 10:38:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4298
 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7533
 http://www.wireshark.org/security/wnpa-sec-2012-25.html
 http://anonsvn.wireshark.org/viewvc?revision=44075&view=revision
 http://anonsvn.wireshark.org/viewvc/trunk/wiretap/vwr.c?r1=44075&r2=44074&pathrev=44075
Description:
 Integer signedness error in the vwr_read_rec_data_ethernet function in
 wiretap/vwr.c in the Ixia IxVeriWave file parser in Wireshark 1.8.x before
 1.8.2 allows user-assisted remote attackers to execute arbitrary code via a
 crafted packet-trace file that triggers a buffer overflow.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_wireshark:
upstream_wireshark: released (1.8.2)
hardy_wireshark: not-affected
lucid_wireshark: not-affected
natty_wireshark: not-affected
oneiric_wireshark: not-affected
precise_wireshark: not-affected (1.6.7-1)
devel_wireshark: not-affected (1.8.2-1)