CVE-2017-6471 (retired)

Priority
Description
In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a WSP infinite
loop, triggered by packet injection or a malformed capture file. This was
addressed in epan/dissectors/packet-wsp.c by validating the capability
length.
Package
Upstream:released (2.2.5, 2.0.11)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 LTS (Trusty Tahr):released (1.12.1+g01b65bf-4+deb8u11ubuntu0.14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (2.2.6+g32dac6a-2ubuntu0.16.04)
Ubuntu 18.04 LTS (Bionic Beaver):not-affected
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected
More Information

Updated: 2019-03-26 12:26:15 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)