In Wireshark 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the BACapp dissector could crash. This was addressed in epan/dissectors/packet-bacapp.c by limiting the amount of recursion.
The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Wireshark | Wireshark | 2.6.0 (including) | 2.6.15 (including) |
Wireshark | Wireshark | 3.0.0 (including) | 3.0.9 (including) |
Wireshark | Wireshark | 3.2.0 (including) | 3.2.2 (including) |
Wireshark | Ubuntu | bionic | * |
Wireshark | Ubuntu | eoan | * |
Wireshark | Ubuntu | esm-apps/bionic | * |
Wireshark | Ubuntu | esm-apps/xenial | * |
Wireshark | Ubuntu | esm-infra-legacy/trusty | * |
Wireshark | Ubuntu | trusty | * |
Wireshark | Ubuntu | trusty/esm | * |
Wireshark | Ubuntu | upstream | * |
Wireshark | Ubuntu | xenial | * |