oss-sec mailing list archives

Re: Wireshark before 1.8.1 (etc.) CVE-2012-4048 CVE-2012-4049

From: Huzaifa Sidhpurwala <huzaifas () redhat com>
Date: Tue, 24 Jul 2012 11:45:01 +0530

On 07/24/2012 10:14 AM, cve-assign () mitre org wrote:

CVE-2012-4048  http://www.wireshark.org/security/wnpa-sec-2012-11.html
CVE-2012-4049  http://www.wireshark.org/security/wnpa-sec-2012-12.html

(We've already asked the upstream vendor to remove the bug 7221
reference from wnpa-sec-2012-12, and insert the correct bug number.)


Combing through the wireshark commits, the following seems to be the
correct bug. (But do wait for upstream)

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7209


-- 
Huzaifa Sidhpurwala / Red Hat Security Response Team

Current thread:

Wireshark before 1.8.1 (etc.) CVE-2012-4048 CVE-2012-4049 cve-assign (Jul 23)
- Re: Wireshark before 1.8.1 (etc.) CVE-2012-4048 CVE-2012-4049 Huzaifa Sidhpurwala (Jul 23)