1
Candidate: CVE-2013-2487
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2487
5
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=8364
6
http://www.wireshark.org/security/wnpa-sec-2013-21.html
7
http://www.wireshark.org/docs/relnotes/wireshark-1.8.6.html
8
http://anonsvn.wireshark.org/viewvc?view=revision&revision=47808
9
http://anonsvn.wireshark.org/viewvc/trunk/epan/dissectors/packet-reload.c?r1=47808&r2=47807&pathrev=47808
11
epan/dissectors/packet-reload.c in the REsource LOcation And Discovery (aka
12
RELOAD) dissector in Wireshark 1.8.x before 1.8.6 uses incorrect integer
13
data types, which allows remote attackers to cause a denial of service
14
(infinite loop) via crafted integer values in a packet, related to the (1)
15
dissect_icecandidates, (2) dissect_kinddata, (3) dissect_nodeid_list, (4)
16
dissect_storeans, (5) dissect_storereq, (6) dissect_storeddataspecifier,
17
(7) dissect_fetchreq, (8) dissect_findans, (9) dissect_diagnosticinfo, (10)
18
dissect_diagnosticresponse, (11) dissect_reload_messagecontents, and (12)
19
dissect_reload_message functions, a different vulnerability than
29
upstream: http://anonsvn.wireshark.org/viewvc?view=revision&revision=47808
30
upstream_wireshark: released (1.8.6)
31
hardy_wireshark: not-affected
32
lucid_wireshark: not-affected
33
oneiric_wireshark: not-affected
34
precise_wireshark: not-affected
35
quantal_wireshark: ignored (reached end-of-life)
36
raring_wireshark: ignored (reached end-of-life)
37
saucy_wireshark: not-affected (1.10.2-1)
38
trusty_wireshark: not-affected (1.10.6-1)
39
devel_wireshark: not-affected (1.10.6-1)