Skip to content

Wireshark stack-based buffer overflow in dissect_nhdr_extopt

This issue was migrated from bug 11984 in our old bug tracker.

Original bug information:

Reporter: Mateusz Jurczyk
Status: RESOLVED FIXED
Product: Wireshark
Component: Dissection engine (libwireshark)
OS: All
Platform: All
Version: Git

Attachments:

poc.zip: Reproducers.
asan_stack-oob_4ab766_1109_84c3064168a7129a694136023df67316.cap: unzip file 1
asan_stack-oob_4ab766_2327_f7a9305dfd1663a4e6d96ebd20bf06ed.cap: unzip file 2

See also: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2528

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information