CVE-2012-0043

Name	CVE-2012-0043
Description	Buffer overflow in the reassemble_message function in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.4.x before 1.4.11 and 1.6.x before 1.6.5 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a series of fragmented RLC packets.
Source	CVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
wireshark (PTS)	bullseye	3.4.10-0+deb11u1	fixed
	bullseye (security)	3.4.16-0+deb11u1	fixed
	bookworm	4.0.17-0+deb12u1	fixed
	bookworm (security)	4.0.11-1~deb12u1	fixed
	trixie	4.4.7-1	fixed
	forky	4.4.9-1	fixed
	sid	4.6.0-1	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
wireshark	source	squeeze	(not affected)
wireshark	source	(unstable)	1.6.5-1

[squeeze] - wireshark <not-affected> (Vulnerable code not present)