CVE-2015-6241

EPSS 0.57%

wireshark - security update

Published: 8/24/2015Modified: 4/28/2026

Description

The proto_tree_add_bytes_item function in epan/proto.c in the protocol-tree implementation in Wireshark 1.12.x before 1.12.7 does not properly terminate a data structure after a failure to locate a number within a string, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.

Affected packages (2)

Debian/wiresharkfrom 0, < 1.12.7+g7fc8978-1
Debian/wiresharkfrom 0, < 1.12.1+g01b65bf-4+deb8u3

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-6241