CVE-2012-0068 — Improper Input Validation in Wireshark

CWE-20 — Improper Input Validation8 documents7 sources

Severity

4.3MEDIUMNVD

EPSS

1.6%

top 18.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wireshark Debian Wireshark

Timeline

PublishedApr 11

Latest updateMay 4

Description

The lanalyzer_read function in wiretap/lanalyzer.c in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) via a Novell capture file containing a record that is too small.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/wireshark< wireshark 1.6.5-1 (bookworm)

▶Debianwireshark/wireshark< 1.6.5-1+3

▶NVDwireshark/wireshark18 versions+17

🔴Vulnerability Details

GHSA

GHSA-phc2-gwgf-vq7r: The lanalyzer_read function in wiretap/lanalyzer↗2022-05-04

▶

Kernel

KVM: x86: invalid opcode oops on SET_SREGS with OSXSAVE bit set (CVE-2012-4461)↗2012-11-06

▶

OSV

CVE-2012-0068: The lanalyzer_read function in wiretap/lanalyzer↗2012-04-11

▶

📋Vendor Advisories

Red Hat

Wireshark: Heap-buffer underflow when parsing LANalyzer packet capture files↗2012-01-10

▶

Debian

CVE-2012-0068: wireshark - The lanalyzer_read function in wiretap/lanalyzer.c in Wireshark 1.4.x before 1.4...↗2012

▶

💬Community

Bugzilla

CVE-2012-0068 Wireshark: Heap-buffer underflow when parsing LANalyzer packet capture files↗2012-01-20

▶

Bugzilla

CVE-2012-0041 CVE-2012-0042 CVE-2012-0043 CVE-2012-0066 CVE-2012-0067 CVE-2012-0068 wireshark various flaws [fedora-all]↗2012-01-13

▶