plugins/ethercat/packet-ecatmb.c in the EtherCAT Mailbox dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before 1.6.10, and 1.8.x before 1.8.2 does not properly handle certain integer fields, which allows remote attackers to cause a denial of service (application exit) via a malformed packet.
{ "availability": "No subscription required", "ubuntu_priority": "low", "binaries": [ { "binary_version": "1.10.6-1", "binary_name": "libwireshark-data" }, { "binary_version": "1.10.6-1", "binary_name": "libwireshark-dev" }, { "binary_version": "1.10.6-1", "binary_name": "libwireshark3" }, { "binary_version": "1.10.6-1", "binary_name": "libwiretap-dev" }, { "binary_version": "1.10.6-1", "binary_name": "libwiretap3" }, { "binary_version": "1.10.6-1", "binary_name": "libwsutil-dev" }, { "binary_version": "1.10.6-1", "binary_name": "libwsutil3" }, { "binary_version": "1.10.6-1", "binary_name": "tshark" }, { "binary_version": "1.10.6-1", "binary_name": "wireshark" }, { "binary_version": "1.10.6-1", "binary_name": "wireshark-common" }, { "binary_version": "1.10.6-1", "binary_name": "wireshark-dbg" }, { "binary_version": "1.10.6-1", "binary_name": "wireshark-dev" }, { "binary_version": "1.10.6-1", "binary_name": "wireshark-doc" } ] }