CVE-2015-2189

Off-by-one error in the pcapng_read function in wiretap/pcapng.c in the pcapng file parser in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via an invalid Interface Statistics Block (ISB) interface ID in a crafted packet.

Affected Software

Name	Vendor	Start Version	End Version
Wireshark	Wireshark	1.10.0 (including)	1.10.0 (including)
Wireshark	Wireshark	1.10.1 (including)	1.10.1 (including)
Wireshark	Wireshark	1.10.2 (including)	1.10.2 (including)
Wireshark	Wireshark	1.10.3 (including)	1.10.3 (including)
Wireshark	Wireshark	1.10.4 (including)	1.10.4 (including)
Wireshark	Wireshark	1.10.5 (including)	1.10.5 (including)
Wireshark	Wireshark	1.10.6 (including)	1.10.6 (including)
Wireshark	Wireshark	1.10.7 (including)	1.10.7 (including)
Wireshark	Wireshark	1.10.8 (including)	1.10.8 (including)
Wireshark	Wireshark	1.10.9 (including)	1.10.9 (including)
Wireshark	Wireshark	1.10.10 (including)	1.10.10 (including)
Wireshark	Wireshark	1.10.11 (including)	1.10.11 (including)
Wireshark	Wireshark	1.10.12 (including)	1.10.12 (including)
Wireshark	Wireshark	1.12.0 (including)	1.12.0 (including)
Wireshark	Wireshark	1.12.1 (including)	1.12.1 (including)
Wireshark	Wireshark	1.12.2 (including)	1.12.2 (including)
Wireshark	Wireshark	1.12.3 (including)	1.12.3 (including)
Red Hat Enterprise Linux 6	RedHat	wireshark-0:1.8.10-17.el6	*
Red Hat Enterprise Linux 7	RedHat	wireshark-0:1.10.14-7.el7	*
Wireshark	Ubuntu	artful	*
Wireshark	Ubuntu	bionic	*
Wireshark	Ubuntu	trusty	*
Wireshark	Ubuntu	upstream	*
Wireshark	Ubuntu	utopic	*
Wireshark	Ubuntu	vivid	*
Wireshark	Ubuntu	wily	*
Wireshark	Ubuntu	xenial	*
Wireshark	Ubuntu	yakkety	*
Wireshark	Ubuntu	zesty	*

NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-2189
CWE	https://cwe.mitre.org/data/definitions/189.html

Affected Software

References