Gutsy includes 0.99.6 of Wireshark and CVE-2008-4685 should not apply according the CVE description, although using the attached CVE POC exploit, it was possible to segfault Wireshark. After applying the fix for CVE 2008-4685 the segfault no longer occured.
** Attachment added: "gutsy-debdiff" http://launchpadlibrarian.net/19240242/gutsy-debdiff ** Changed in: wireshark (Ubuntu Gutsy) Status: New => In Progress ** Changed in: wireshark (Ubuntu Hardy) Status: New => In Progress -- [CVE 2008-468[1-5] - Wireshark up to 1.0.3 affected by multiple security vulnerabilities https://bugs.launchpad.net/bugs/290716 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
