CVE-2015-0562

Published: Jan 10, 2015Modified: May 6, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Multiple use-after-free vulnerabilities in epan/dissectors/packet-dec-dnart.c in the DEC DNA Routing Protocol dissector in Wireshark 1.10.x before 1.10.12 and 1.12.x before 1.12.3 allow remote attackers to cause a denial of service (application crash) via a crafted packet, related to the use of packet-scope memory instead of pinfo-scope memory.

Affected (15)

Products: Wireshark: Wireshark

1 product

Configuration A

15 vulnerable

Vulnerable Software	Affected Versions
Wireshark Wireshark	Version 1.10.0
Wireshark Wireshark	Version 1.10.10
Wireshark Wireshark	Version 1.10.11
Wireshark Wireshark	Version 1.10.1
Wireshark Wireshark	Version 1.10.2
Wireshark Wireshark	Version 1.10.3
Wireshark Wireshark	Version 1.10.4
Wireshark Wireshark	Version 1.10.5
Wireshark Wireshark	Version 1.10.6
Wireshark Wireshark	Version 1.10.7
Wireshark Wireshark	Version 1.10.8
Wireshark Wireshark	Version 1.10.9
Wireshark Wireshark	Version 1.12.0
Wireshark Wireshark	Version 1.12.1
Wireshark Wireshark	Version 1.12.2

References (26)

http://advisories.mageia.org/MGASA-2015-0019.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-updates/2015-01/msg00053.html

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHSA-2015-1460.html

Source: cve@mitre.org

http://secunia.com/advisories/62612

Source: cve@mitre.org

http://secunia.com/advisories/62673

Source: cve@mitre.org

http://www.debian.org/security/2015/dsa-3141

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDVSA-2015:022

Source: cve@mitre.org

http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

Source: cve@mitre.org

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/71921

Source: cve@mitre.org

http://www.wireshark.org/security/wnpa-sec-2015-03.html

Source: cve@mitre.org

Vendor Advisory

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=10724

Source: cve@mitre.org

https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=a559f2a050947f793c00159c0cd4d30f403f217c

Source: cve@mitre.org

http://advisories.mageia.org/MGASA-2015-0019.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2015-01/msg00053.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2015-1460.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/62612

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/62673

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2015/dsa-3141

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2015:022

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/71921

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.wireshark.org/security/wnpa-sec-2015-03.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=10724

Source: af854a3a-2127-422b-91ae-364da2661108

https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=a559f2a050947f793c00159c0cd4d30f403f217c

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.