The dissectnhdrextopt function in epan/dissectors/packet-lbmc.c in the LBMC dissector in Wireshark 2.0.x before 2.0.2 does not validate length values, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libwsutil9": "2.6.3-1~ubuntu14.04.1", "libwscodecs2": "2.6.3-1~ubuntu14.04.1", "wireshark-dev": "2.6.3-1~ubuntu14.04.1", "libwiretap8": "2.6.3-1~ubuntu14.04.1", "wireshark-doc": "2.6.3-1~ubuntu14.04.1", "libwiretap8-dbgsym": "2.6.3-1~ubuntu14.04.1", "tshark": "2.6.3-1~ubuntu14.04.1", "libwiretap-dev": "2.6.3-1~ubuntu14.04.1", "libwsutil-dev": "2.6.3-1~ubuntu14.04.1", "tshark-dbgsym": "2.6.3-1~ubuntu14.04.1", "libwireshark-dev": "2.6.3-1~ubuntu14.04.1", "libwireshark11": "2.6.3-1~ubuntu14.04.1", "libwsutil9-dbgsym": "2.6.3-1~ubuntu14.04.1", "wireshark-qt": "2.6.3-1~ubuntu14.04.1", "wireshark-common-dbgsym": "2.6.3-1~ubuntu14.04.1", "wireshark": "2.6.3-1~ubuntu14.04.1", "wireshark-common": "2.6.3-1~ubuntu14.04.1", "wireshark-gtk-dbgsym": "2.6.3-1~ubuntu14.04.1", "libwireshark-data": "2.6.3-1~ubuntu14.04.1", "libwscodecs2-dbgsym": "2.6.3-1~ubuntu14.04.1", "libwireshark11-dbgsym": "2.6.3-1~ubuntu14.04.1", "wireshark-gtk": "2.6.3-1~ubuntu14.04.1", "wireshark-qt-dbgsym": "2.6.3-1~ubuntu14.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libwsutil9": "2.6.3-1~ubuntu16.04.1", "libwscodecs2": "2.6.3-1~ubuntu16.04.1", "wireshark-dev": "2.6.3-1~ubuntu16.04.1", "libwiretap8": "2.6.3-1~ubuntu16.04.1", "wireshark-doc": "2.6.3-1~ubuntu16.04.1", "libwiretap8-dbgsym": "2.6.3-1~ubuntu16.04.1", "tshark": "2.6.3-1~ubuntu16.04.1", "libwiretap-dev": "2.6.3-1~ubuntu16.04.1", "libwsutil-dev": "2.6.3-1~ubuntu16.04.1", "tshark-dbgsym": "2.6.3-1~ubuntu16.04.1", "libwireshark-dev": "2.6.3-1~ubuntu16.04.1", "libwireshark11": "2.6.3-1~ubuntu16.04.1", "libwsutil9-dbgsym": "2.6.3-1~ubuntu16.04.1", "wireshark-qt": "2.6.3-1~ubuntu16.04.1", "wireshark-common-dbgsym": "2.6.3-1~ubuntu16.04.1", "wireshark": "2.6.3-1~ubuntu16.04.1", "wireshark-common": "2.6.3-1~ubuntu16.04.1", "wireshark-gtk-dbgsym": "2.6.3-1~ubuntu16.04.1", "libwireshark-data": "2.6.3-1~ubuntu16.04.1", "libwscodecs2-dbgsym": "2.6.3-1~ubuntu16.04.1", "libwireshark11-dbgsym": "2.6.3-1~ubuntu16.04.1", "wireshark-gtk": "2.6.3-1~ubuntu16.04.1", "wireshark-qt-dbgsym": "2.6.3-1~ubuntu16.04.1" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libwsutil9": "2.6.3-1~ubuntu18.04.1", "libwscodecs2": "2.6.3-1~ubuntu18.04.1", "wireshark-dev": "2.6.3-1~ubuntu18.04.1", "libwiretap8": "2.6.3-1~ubuntu18.04.1", "wireshark-doc": "2.6.3-1~ubuntu18.04.1", "libwiretap8-dbgsym": "2.6.3-1~ubuntu18.04.1", "tshark": "2.6.3-1~ubuntu18.04.1", "libwiretap-dev": "2.6.3-1~ubuntu18.04.1", "libwsutil-dev": "2.6.3-1~ubuntu18.04.1", "tshark-dbgsym": "2.6.3-1~ubuntu18.04.1", "libwireshark-dev": "2.6.3-1~ubuntu18.04.1", "libwireshark11": "2.6.3-1~ubuntu18.04.1", "libwsutil9-dbgsym": "2.6.3-1~ubuntu18.04.1", "wireshark-qt": "2.6.3-1~ubuntu18.04.1", "wireshark-common-dbgsym": "2.6.3-1~ubuntu18.04.1", "wireshark": "2.6.3-1~ubuntu18.04.1", "wireshark-common": "2.6.3-1~ubuntu18.04.1", "wireshark-gtk-dbgsym": "2.6.3-1~ubuntu18.04.1", "libwireshark-data": "2.6.3-1~ubuntu18.04.1", "libwscodecs2-dbgsym": "2.6.3-1~ubuntu18.04.1", "libwireshark11-dbgsym": "2.6.3-1~ubuntu18.04.1", "wireshark-gtk": "2.6.3-1~ubuntu18.04.1", "wireshark-qt-dbgsym": "2.6.3-1~ubuntu18.04.1" } ] }