The wmemblocksplitfreechunk function in epan/wmem/wmemallocatorblock.c in the wmem block allocator in the memory manager in Wireshark 1.12.x before 1.12.7 does not properly consider a certain case of multiple realloc operations that restore a memory chunk to its original size, which allows remote attackers to cause a denial of service (incorrect free operation and application crash) via a crafted packet.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libwsutil9": "2.6.3-1~ubuntu14.04.1", "libwscodecs2": "2.6.3-1~ubuntu14.04.1", "wireshark-dev": "2.6.3-1~ubuntu14.04.1", "libwiretap8": "2.6.3-1~ubuntu14.04.1", "wireshark-doc": "2.6.3-1~ubuntu14.04.1", "libwiretap8-dbgsym": "2.6.3-1~ubuntu14.04.1", "tshark": "2.6.3-1~ubuntu14.04.1", "libwiretap-dev": "2.6.3-1~ubuntu14.04.1", "libwsutil-dev": "2.6.3-1~ubuntu14.04.1", "tshark-dbgsym": "2.6.3-1~ubuntu14.04.1", "libwireshark-dev": "2.6.3-1~ubuntu14.04.1", "libwireshark11": "2.6.3-1~ubuntu14.04.1", "libwsutil9-dbgsym": "2.6.3-1~ubuntu14.04.1", "wireshark-qt": "2.6.3-1~ubuntu14.04.1", "wireshark-common-dbgsym": "2.6.3-1~ubuntu14.04.1", "wireshark": "2.6.3-1~ubuntu14.04.1", "wireshark-common": "2.6.3-1~ubuntu14.04.1", "wireshark-gtk-dbgsym": "2.6.3-1~ubuntu14.04.1", "libwireshark-data": "2.6.3-1~ubuntu14.04.1", "libwscodecs2-dbgsym": "2.6.3-1~ubuntu14.04.1", "libwireshark11-dbgsym": "2.6.3-1~ubuntu14.04.1", "wireshark-gtk": "2.6.3-1~ubuntu14.04.1", "wireshark-qt-dbgsym": "2.6.3-1~ubuntu14.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libwsutil9": "2.6.3-1~ubuntu16.04.1", "libwscodecs2": "2.6.3-1~ubuntu16.04.1", "wireshark-dev": "2.6.3-1~ubuntu16.04.1", "libwiretap8": "2.6.3-1~ubuntu16.04.1", "wireshark-doc": "2.6.3-1~ubuntu16.04.1", "libwiretap8-dbgsym": "2.6.3-1~ubuntu16.04.1", "tshark": "2.6.3-1~ubuntu16.04.1", "libwiretap-dev": "2.6.3-1~ubuntu16.04.1", "libwsutil-dev": "2.6.3-1~ubuntu16.04.1", "tshark-dbgsym": "2.6.3-1~ubuntu16.04.1", "libwireshark-dev": "2.6.3-1~ubuntu16.04.1", "libwireshark11": "2.6.3-1~ubuntu16.04.1", "libwsutil9-dbgsym": "2.6.3-1~ubuntu16.04.1", "wireshark-qt": "2.6.3-1~ubuntu16.04.1", "wireshark-common-dbgsym": "2.6.3-1~ubuntu16.04.1", "wireshark": "2.6.3-1~ubuntu16.04.1", "wireshark-common": "2.6.3-1~ubuntu16.04.1", "wireshark-gtk-dbgsym": "2.6.3-1~ubuntu16.04.1", "libwireshark-data": "2.6.3-1~ubuntu16.04.1", "libwscodecs2-dbgsym": "2.6.3-1~ubuntu16.04.1", "libwireshark11-dbgsym": "2.6.3-1~ubuntu16.04.1", "wireshark-gtk": "2.6.3-1~ubuntu16.04.1", "wireshark-qt-dbgsym": "2.6.3-1~ubuntu16.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libwsutil9": "2.6.3-1~ubuntu18.04.1", "libwscodecs2": "2.6.3-1~ubuntu18.04.1", "wireshark-dev": "2.6.3-1~ubuntu18.04.1", "libwiretap8": "2.6.3-1~ubuntu18.04.1", "wireshark-doc": "2.6.3-1~ubuntu18.04.1", "libwiretap8-dbgsym": "2.6.3-1~ubuntu18.04.1", "tshark": "2.6.3-1~ubuntu18.04.1", "libwiretap-dev": "2.6.3-1~ubuntu18.04.1", "libwsutil-dev": "2.6.3-1~ubuntu18.04.1", "tshark-dbgsym": "2.6.3-1~ubuntu18.04.1", "libwireshark-dev": "2.6.3-1~ubuntu18.04.1", "libwireshark11": "2.6.3-1~ubuntu18.04.1", "libwsutil9-dbgsym": "2.6.3-1~ubuntu18.04.1", "wireshark-qt": "2.6.3-1~ubuntu18.04.1", "wireshark-common-dbgsym": "2.6.3-1~ubuntu18.04.1", "wireshark": "2.6.3-1~ubuntu18.04.1", "wireshark-common": "2.6.3-1~ubuntu18.04.1", "wireshark-gtk-dbgsym": "2.6.3-1~ubuntu18.04.1", "libwireshark-data": "2.6.3-1~ubuntu18.04.1", "libwscodecs2-dbgsym": "2.6.3-1~ubuntu18.04.1", "libwireshark11-dbgsym": "2.6.3-1~ubuntu18.04.1", "wireshark-gtk": "2.6.3-1~ubuntu18.04.1", "wireshark-qt-dbgsym": "2.6.3-1~ubuntu18.04.1" } ] }