FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

wireshark -- denial of service in DRDA dissector

Affected packages
1.5 <= wireshark < 1.8.2_1
1.5 <= wireshark-lite < 1.8.2_1
1.5 <= tshark < 1.8.2_1
1.5 <= tshark-lite < 1.8.2_1

Details

VuXML ID 5415f1b3-f33d-11e1-8bd8-0022156e8794
Discovery 2012-08-21
Entry 2012-08-31
Modified 2012-09-05

RedHat security team reports:

A denial of service flaw was found in the way Distributed Relational Database Architecture (DRDA) dissector of Wireshark, a network traffic analyzer, performed processing of certain DRDA packet capture files. A remote attacker could create a specially-crafted capture file that, when opened could lead to wireshark executable to consume excessive amount of CPU time and hang with an infinite loop.

References

CVE Name CVE-2012-3548
URL https://bugzilla.redhat.com/show_bug.cgi?id=849926