CVE-2012-4286 Common Vulnerabilities and Exposures

Upstream information

CVE-2012-4286 at MITRE

Description

The pcapng_read_packet_block function in wiretap/pcapng.c in the pcap-ng file parser in Wireshark 1.8.x before 1.8.2 allows user-assisted remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted pcap-ng file.

SUSE information

Overall state of this security issue: Does not affect SUSE products

This issue is currently rated as having moderate severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	4.3
Vector	AV:N/AC:M/Au:N/C:N/I:N/A:P
Access Vector	Network
Access Complexity	Medium
Authentication	None
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Partial

SUSE Bugzilla entry: 776083 [RESOLVED / FIXED]

SUSE Security Advisories:

openSUSE-SU-2012:1067-1

List of released packages

SUSE Timeline for this CVE

CVE page created: Thu Jun 27 19:17:26 2013
CVE page last modified: Sun Sep 8 00:12:43 2024

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Desktop 12 SP1	`wireshark >= 1.12.7-15.1` `wireshark-devel >= 1.12.7-15.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP1 GA wireshark-1.12.7-15.1 SUSE Linux Enterprise Software Development Kit 12 SP1 GA wireshark-devel-1.12.7-15.1
SUSE Linux Enterprise Desktop 12 SP2	`wireshark >= 1.12.13-31.1` `wireshark-devel >= 1.12.13-31.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP2 GA wireshark-1.12.13-31.1 SUSE Linux Enterprise Software Development Kit 12 SP2 GA wireshark-devel-1.12.13-31.1
SUSE Linux Enterprise Desktop 12 SP3	`libwireshark8 >= 2.2.7-47.1` `libwiretap6 >= 2.2.7-47.1` `libwscodecs1 >= 2.2.7-47.1` `libwsutil7 >= 2.2.7-47.1` `wireshark >= 2.2.7-47.1` `wireshark-devel >= 2.2.7-47.1` `wireshark-gtk >= 2.2.7-47.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP3 GA libwireshark8-2.2.7-47.1 SUSE Linux Enterprise Software Development Kit 12 SP3 GA wireshark-devel-2.2.7-47.1
SUSE Linux Enterprise Desktop 12 SP4	`libwireshark9 >= 2.4.9-48.29.1` `libwiretap7 >= 2.4.9-48.29.1` `libwscodecs1 >= 2.4.9-48.29.1` `libwsutil8 >= 2.4.9-48.29.1` `wireshark >= 2.4.9-48.29.1` `wireshark-devel >= 2.4.9-48.29.1` `wireshark-gtk >= 2.4.9-48.29.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP4 GA libwireshark9-2.4.9-48.29.1 SUSE Linux Enterprise Software Development Kit 12 SP4 GA wireshark-devel-2.4.9-48.29.1
SUSE Linux Enterprise Desktop 12	`wireshark >= 1.10.9-1.11` `wireshark-devel >= 1.10.9-1.11`	Patchnames: SUSE Linux Enterprise Desktop 12 GA wireshark-1.10.9-1.11 SUSE Linux Enterprise Software Development Kit 12 GA wireshark-devel-1.10.9-1.11
SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15	`libwireshark9 >= 2.4.6-1.31` `libwiretap7 >= 2.4.6-1.31` `libwscodecs1 >= 2.4.6-1.31` `libwsutil8 >= 2.4.6-1.31` `wireshark >= 2.4.6-1.31` `wireshark-devel >= 2.4.6-1.31` `wireshark-ui-qt >= 2.4.6-1.31`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA libwireshark9-2.4.6-1.31 SUSE Linux Enterprise Module for Desktop Applications 15 GA wireshark-devel-2.4.6-1.31
SUSE Linux Enterprise High Performance Computing 12 SP5	`libwireshark9 >= 2.4.16-48.51.1` `libwiretap7 >= 2.4.16-48.51.1` `libwscodecs1 >= 2.4.16-48.51.1` `libwsutil8 >= 2.4.16-48.51.1` `wireshark >= 2.4.16-48.51.1` `wireshark-gtk >= 2.4.16-48.51.1`	Patchnames: SUSE Linux Enterprise High Performance Computing 12 SP5 GA libwireshark9-2.4.16-48.51.1
SUSE Linux Enterprise Module for Basesystem 15	`libwireshark9 >= 2.4.6-1.31` `libwiretap7 >= 2.4.6-1.31` `libwscodecs1 >= 2.4.6-1.31` `libwsutil8 >= 2.4.6-1.31` `wireshark >= 2.4.6-1.31`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA libwireshark9-2.4.6-1.31
SUSE Linux Enterprise Module for Desktop Applications 15	`wireshark-devel >= 2.4.6-1.31` `wireshark-ui-qt >= 2.4.6-1.31`	Patchnames: SUSE Linux Enterprise Module for Desktop Applications 15 GA wireshark-devel-2.4.6-1.31
SUSE Linux Enterprise Server 12 SP1	`wireshark >= 1.12.7-15.1` `wireshark-devel >= 1.12.7-15.1`	Patchnames: SUSE Linux Enterprise Server 12 SP1 GA wireshark-1.12.7-15.1 SUSE Linux Enterprise Software Development Kit 12 SP1 GA wireshark-devel-1.12.7-15.1
SUSE Linux Enterprise Server 12 SP2	`wireshark >= 1.12.13-31.1` `wireshark-devel >= 1.12.13-31.1`	Patchnames: SUSE Linux Enterprise Server 12 SP2 GA wireshark-1.12.13-31.1 SUSE Linux Enterprise Software Development Kit 12 SP2 GA wireshark-devel-1.12.13-31.1
SUSE Linux Enterprise Server 12 SP3	`libwireshark8 >= 2.2.7-47.1` `libwiretap6 >= 2.2.7-47.1` `libwscodecs1 >= 2.2.7-47.1` `libwsutil7 >= 2.2.7-47.1` `wireshark >= 2.2.7-47.1` `wireshark-devel >= 2.2.7-47.1` `wireshark-gtk >= 2.2.7-47.1`	Patchnames: SUSE Linux Enterprise Server 12 SP3 GA libwireshark8-2.2.7-47.1 SUSE Linux Enterprise Software Development Kit 12 SP3 GA wireshark-devel-2.2.7-47.1
SUSE Linux Enterprise Server 12 SP4	`libwireshark9 >= 2.4.9-48.29.1` `libwiretap7 >= 2.4.9-48.29.1` `libwscodecs1 >= 2.4.9-48.29.1` `libwsutil8 >= 2.4.9-48.29.1` `wireshark >= 2.4.9-48.29.1` `wireshark-devel >= 2.4.9-48.29.1` `wireshark-gtk >= 2.4.9-48.29.1`	Patchnames: SUSE Linux Enterprise Server 12 SP4 GA libwireshark9-2.4.9-48.29.1 SUSE Linux Enterprise Software Development Kit 12 SP4 GA wireshark-devel-2.4.9-48.29.1
SUSE Linux Enterprise Server 12 SP5	`libwireshark9 >= 2.4.16-48.51.1` `libwiretap7 >= 2.4.16-48.51.1` `libwscodecs1 >= 2.4.16-48.51.1` `libwsutil8 >= 2.4.16-48.51.1` `wireshark >= 2.4.16-48.51.1` `wireshark-devel >= 2.4.16-48.51.1` `wireshark-gtk >= 2.4.16-48.51.1`	Patchnames: SUSE Linux Enterprise Server 12 SP5 GA libwireshark9-2.4.16-48.51.1 SUSE Linux Enterprise Software Development Kit 12 SP5 GA wireshark-devel-2.4.16-48.51.1
SUSE Linux Enterprise Server 12	`wireshark >= 1.10.9-1.5` `wireshark-devel >= 1.10.9-1.11`	Patchnames: SUSE Linux Enterprise Server 12 GA wireshark-1.10.9-1.11 SUSE Linux Enterprise Software Development Kit 12 GA wireshark-devel-1.10.9-1.11
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2	`wireshark >= 1.12.13-31.1`	Patchnames: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 GA wireshark-1.12.13-31.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1	`wireshark-devel >= 1.12.7-15.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP1 GA wireshark-devel-1.12.7-15.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP2	`wireshark-devel >= 1.12.13-31.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP2 GA wireshark-devel-1.12.13-31.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3	`wireshark-devel >= 2.2.7-47.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP3 GA wireshark-devel-2.2.7-47.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP4	`wireshark-devel >= 2.4.9-48.29.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP4 GA wireshark-devel-2.4.9-48.29.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP5	`wireshark-devel >= 2.4.16-48.51.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP5 GA wireshark-devel-2.4.16-48.51.1
SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Software Development Kit 12	`wireshark-devel >= 1.10.9-1.11`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 GA wireshark-devel-1.10.9-1.11
openSUSE Tumbleweed	`wireshark >= 2.2.2-1.1` `wireshark-devel >= 2.2.2-1.1` `wireshark-ui-gtk >= 2.2.2-1.1` `wireshark-ui-qt >= 2.2.2-1.1`	Patchnames: openSUSE-Tumbleweed-2024-10199