Total vulnerabilities in the database
asn1/lpp/lpp.cnf in the LPP dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 does not validate a certain index value, which allows remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted packet.
| Software | From | Fixed in |
|---|---|---|
| wireshark / wireshark | 1.10.8 | 1.10.8.x |
| wireshark / wireshark | 1.12.0 | 1.12.0.x |
| wireshark / wireshark | 1.10.6 | 1.10.6.x |
| wireshark / wireshark | 1.10.9 | 1.10.9.x |
| wireshark / wireshark | 1.10.10 | 1.10.10.x |
| wireshark / wireshark | 1.10.0 | 1.10.0.x |
| wireshark / wireshark | 1.12.2 | 1.12.2.x |
| wireshark / wireshark | 1.10.3 | 1.10.3.x |
| wireshark / wireshark | 1.10.2 | 1.10.2.x |
| wireshark / wireshark | 1.10.1 | 1.10.1.x |
| wireshark / wireshark | 1.12.1 | 1.12.1.x |
| wireshark / wireshark | 1.10.7 | 1.10.7.x |
| wireshark / wireshark | 1.10.4 | 1.10.4.x |
| wireshark / wireshark | 1.10.5 | 1.10.5.x |
| wireshark / wireshark | 1.10.11 | 1.10.11.x |
| opensuse / opensuse | 13.1 | 13.1.x |
| opensuse / opensuse | 13.2 | 13.2.x |
| oracle / solaris | 11.2 | 11.2.x |