Total vulnerabilities in the database
epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 does not properly initialize a data structure, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet that is improperly handled during decompression.
| Software | From | Fixed in |
|---|---|---|
| wireshark / wireshark | 1.10.8 | 1.10.8.x |
| wireshark / wireshark | 1.12.0 | 1.12.0.x |
| wireshark / wireshark | 1.10.6 | 1.10.6.x |
| wireshark / wireshark | 1.10.9 | 1.10.9.x |
| wireshark / wireshark | 1.10.12 | 1.10.12.x |
| wireshark / wireshark | 1.10.10 | 1.10.10.x |
| wireshark / wireshark | 1.10.0 | 1.10.0.x |
| wireshark / wireshark | 1.12.2 | 1.12.2.x |
| wireshark / wireshark | 1.10.3 | 1.10.3.x |
| wireshark / wireshark | 1.10.2 | 1.10.2.x |
| wireshark / wireshark | 1.10.1 | 1.10.1.x |
| wireshark / wireshark | 1.12.1 | 1.12.1.x |
| wireshark / wireshark | 1.10.7 | 1.10.7.x |
| wireshark / wireshark | 1.10.4 | 1.10.4.x |
| wireshark / wireshark | 1.12.3 | 1.12.3.x |
| wireshark / wireshark | 1.10.5 | 1.10.5.x |
| wireshark / wireshark | 1.10.11 | 1.10.11.x |
| mageia / mageia | 4.0 | 4.0.x |
| opensuse / opensuse | 13.1 | 13.1.x |
| opensuse / opensuse | 13.2 | 13.2.x |
| debian / debian_linux | 8.0 | 8.0.x |
| debian / debian_linux | 7.0 | 7.0.x |
| oracle / solaris | 11.2 | 11.2.x |
| oracle / linux | 7 | 7.x |