CVE-2015-4651

Priority
Description
The dissect_wccp2r1_address_table_info function in
epan/dissectors/packet-wccp.c in the WCCP dissector in Wireshark 1.12.x
before 1.12.6 does not properly determine whether enough memory is
available for storing IP address strings, which allows remote attackers to
cause a denial of service (application crash) via a crafted packet.
Notes
Package
Upstream:released (1.12.6+gee1fce6-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needs-triage)
Ubuntu 14.04 ESM (Trusty Tahr):released (2.6.3-1~ubuntu14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (2.6.3-1~ubuntu16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (2.6.3-1~ubuntu18.04.1)
More Information

Updated: 2020-05-07 18:37:06 UTC (commit 3db3e0dddc92f0ed79599b5949ba82bc7a3031ed)