In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the CoAP protocol dissector could crash. This was addressed in epan/dissectors/packet-coap.c by properly checking for a NULL condition.
The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Wireshark | Wireshark | 2.4.0 (including) | 2.4.7 (including) |
Wireshark | Wireshark | 2.6.0 (including) | 2.6.1 (including) |
Wireshark | Ubuntu | artful | * |
Wireshark | Ubuntu | bionic | * |
Wireshark | Ubuntu | trusty | * |
Wireshark | Ubuntu | xenial | * |