Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 11795] Wireshark heap-based buffer overflow in vwr_read_s2_s3_W_rec

Wireshark-bugs: [Wireshark-bugs] [Bug 11795] Wireshark heap-based buffer overflow in vwr_read_s2

Date: Mon, 22 Feb 2016 13:33:45 +0000

Comment # 6 on bug 11795 from Mateusz Jurczyk

FYI: Since a fix for the vulnerability hasn't been submitted yet, the Google
Project Zero 90-day disclosure deadline expires in three days (on 2016-02-25).
The corresponding bug at
https://code.google.com/p/google-security-research/issues/detail?id=647 in our
tracker will be opened then.

I guess it doesn't matter much considering that this bug has already been open
since November, but just letting you know nevertheless.

You are receiving this mail because:

You are watching all bug changes.

Prev by Date: [Wireshark-bugs] [Bug 12149] PPTP GRE call ID not always decoded
Next by Date: [Wireshark-bugs] [Bug 12124] Default decoding of MPLS
Previous by thread: [Wireshark-bugs] [Bug 12154] Buildbot crash output: fuzz-2016-02-21-5867.pcap
Next by thread: [Wireshark-bugs] [Bug 11795] Wireshark heap-based buffer overflow in vwr_read_s2_s3_W_rec
Index(es):
- Date
- Thread