CVE-2013-6340
Published: 4 November 2013
epan/dissectors/packet-tcp.c in the TCP dissector in Wireshark 1.8.x before 1.8.11 and 1.10.x before 1.10.3 does not properly determine the amount of remaining data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
wireshark Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
| precise |
Ignored
(end of life)
|
|
| quantal |
Ignored
(end of life)
|
|
| raring |
Released
(1.8.2-5wheezy7build0.13.04.1)
|
|
| saucy |
Ignored
(end of life)
|
|
| trusty |
Not vulnerable
(1.10.3-1)
|
|
| upstream |
Released
(1.10.3-1)
|
|
| utopic |
Not vulnerable
(1.10.3-1)
|
|
| vivid |
Not vulnerable
(1.10.3-1)
|
|
| wily |
Not vulnerable
(1.10.3-1)
|
|
| xenial |
Not vulnerable
(1.10.3-1)
|
|
| yakkety |
Not vulnerable
(1.10.3-1)
|
|
| zesty |
Not vulnerable
(1.10.3-1)
|