CVE-2018-14340

Priority
Description
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15,
dissectors that support zlib decompression could crash. This was addressed
in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer
over-read.
Notes
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):released (2.6.3-1~ubuntu14.04.1)
Ubuntu 16.04 LTS (Xenial Xerus):released (2.6.3-1~ubuntu16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (2.6.3-1~ubuntu18.04.1)
More Information

Updated: 2020-09-10 05:49:29 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)