CVE-2015-7830

EPSS 0.57%

wireshark - security update

Published: 11/15/2015Modified: 4/28/2026

Description

The pcapng_read_if_descr_block function in wiretap/pcapng.c in the pcapng parser in Wireshark 1.12.x before 1.12.8 uses too many levels of pointer indirection, which allows remote attackers to cause a denial of service (incorrect free and application crash) via a crafted packet that triggers interface-filter copying.

Affected packages (2)

Debian/wiresharkfrom 0, < 1.12.8+g5b6e543-1
Debian/wiresharkfrom 0, < 1.8.2-5wheezy17

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-7830