Wireshark-commits: [Wireshark-commits] rev 39508: /trunk/wiretap/ /trunk/wiretap/: erf.c
Date: Fri, 21 Oct 2011 19:07:42 GMT
http://anonsvn.wireshark.org/viewvc/viewvc.cgi?view=rev&revision=39508

User: gerald
Date: 2011/10/21 12:07 PM

Log:
 From Huzaifa Sidhpurwala of Red Hat Security Response Team:
 
 I found a heap-based buffer overflow, when parsing ERF file format.
 The overflow seems to be controlled by the values read from the file, 
 and hence seems exploitable to me.

Directory: /trunk/wiretap/
  Changes    Path          Action
  +20 -0     erf.c         Modified