1
Candidate: CVE-2012-4292
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4292
5
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7569
6
http://www.wireshark.org/security/wnpa-sec-2012-21.html
7
http://anonsvn.wireshark.org/viewvc?view=revision&revision=44380
8
http://anonsvn.wireshark.org/viewvc?view=revision&revision=44366
9
http://anonsvn.wireshark.org/viewvc/trunk/epan/emem.c?r1=44380&r2=44379&pathrev=44380
10
http://anonsvn.wireshark.org/viewvc/trunk/epan/dissectors/packet-stun.c?r1=44366&r2=44365&pathrev=44366
12
The dissect_stun_message function in epan/dissectors/packet-stun.c in the
13
STUN dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and
14
1.8.x before 1.8.2 does not properly interact with key-destruction behavior
15
in a certain tree library, which allows remote attackers to cause a denial
16
of service (application crash) via a malformed packet.
25
upstream_wireshark: released (1.4.15, 1.6.10, 1.8.2)
26
hardy_wireshark: ignored (reached end-of-life)
27
lucid_wireshark: not-affected (1.2.7-1)
28
natty_wireshark: ignored (reached end-of-life)
29
oneiric_wireshark: ignored (reached end-of-life)
30
precise_wireshark: ignored (reached end-of-life)
31
precise/esm_wireshark: DNE (precise was needed)
32
quantal_wireshark: ignored (reached end-of-life)
33
raring_wireshark: ignored (reached end-of-life)
34
saucy_wireshark: ignored (reached end-of-life)
35
trusty_wireshark: not-affected (1.10.6-1)
36
utopic_wireshark: not-affected (1.12.0+git+4fab41a1-1)
37
vivid_wireshark: not-affected (1.12.1+g01b65bf-2)
38
vivid/stable-phone-overlay_wireshark: DNE
39
vivid/ubuntu-core_wireshark: DNE
40
wily_wireshark: not-affected (1.12.1+g01b65bf-2)
41
xenial_wireshark: not-affected (1.12.1+g01b65bf-2)
42
yakkety_wireshark: not-affected (1.12.1+g01b65bf-2)
43
zesty_wireshark: not-affected (1.12.1+g01b65bf-2)
44
devel_wireshark: not-affected (1.12.1+g01b65bf-2)