Upstream information
Description
The dissect_btacl function in packet-bthci_acl.c in the Bluetooth ACL dissector in Wireshark 0.99.2 through 1.0.3 allows remote attackers to cause a denial of service (application crash or abort) via a packet with an invalid length, related to an erroneous tvb_memcpy call.SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
National Vulnerability Database | |
---|---|
Base Score | 5 |
Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Access Vector | Network |
Access Complexity | Low |
Authentication | None |
Confidentiality Impact | None |
Integrity Impact | None |
Availability Impact | Partial |
- SUSE-SR:2009:001, published Mon, 12 Jan 2009 13:00:00 +0000
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
Novell Linux Desktop 9 SDK for x86 Novell Linux Desktop 9 SDK for x86_64 Open Enterprise Server |
|
sles9-nld.x86 core9.ia64 sles9-nld.x86-64 core9.s390 core9.s390x sles9-nlpos.x86 core9.x86-64 core9.x86 core9.ppc sles9-oes.x86 YOU Patch Nr: 12323 |
SUSE Linux Enterprise SDK 10 SP2 |
|
sles10-sp2.s390x sle10-sp2-sdk.ppc sled10-sp2.x86-64 sles10-sp2.x86-64 sles10-sp2.ppc sle10-sp2-sdk.x86 sle10-sp2-sdk.x86-64 sles10-sp2.x86 sle10-sp2-sdk.ia64 sled10-sp2.x86 sles10-sp2.ia64 sle10-sp2-sdk.s390x ZYPP Patch Nr: 5866 |
openSUSE 11.0 |
| |
openSUSE 11.0 |
|