CVE-2014-6429 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2014-6429 Interim 1 24 2025-11-05T05:04:05Z current 2021-05-30T13:22:47Z 2025-11-05T05:04:05Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2014-6429 The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not properly handle empty input data, which allows remote attackers to cause a denial of service (application crash) via a crafted file. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2014-September/001020.html E-Mail link for SUSE-SU-2014:1221-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Liberty Linux 7 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Server 16.0 SUSE Linux Enterprise Server for SAP Applications 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Desktop Applications 15 openSUSE Tumbleweed libwireshark18-4.4.7-160000.2.2 libwireshark9-2.4.6-1.31 libwiretap15-4.4.7-160000.2.2 libwiretap7-2.4.6-1.31 libwscodecs1-2.4.6-1.31 libwsutil16-4.4.7-160000.2.2 libwsutil8-2.4.6-1.31 wireshark-1.10.10-0.2.1 wireshark-1.10.11-0.2.1 wireshark-1.10.13-0.2.1 wireshark-1.10.3-12.el7_0 wireshark-2.2.2-1.1 wireshark-2.4.6-1.31 wireshark-4.4.7-160000.2.2 wireshark-devel-1.10.10-0.2.1 wireshark-devel-1.10.13-0.2.1 wireshark-devel-1.10.3-12.el7_0 wireshark-devel-2.2.2-1.1 wireshark-devel-2.4.6-1.31 wireshark-devel-4.4.7-160000.2.2 wireshark-gnome-1.10.3-12.el7_0 wireshark-ui-gtk-2.2.2-1.1 wireshark-ui-qt-2.2.2-1.1 wireshark-ui-qt-2.4.6-1.31 wireshark-ui-qt-4.4.7-160000.2.2 wireshark-1.10.3-12.el7_0 as a component of SUSE Liberty Linux 7 wireshark-devel-1.10.3-12.el7_0 as a component of SUSE Liberty Linux 7 wireshark-gnome-1.10.3-12.el7_0 as a component of SUSE Liberty Linux 7 wireshark-1.10.10-0.2.1 as a component of SUSE Linux Enterprise Desktop 11 SP3 libwireshark9-2.4.6-1.31 as a component of SUSE Linux Enterprise Module for Basesystem 15 libwiretap7-2.4.6-1.31 as a component of SUSE Linux Enterprise Module for Basesystem 15 libwscodecs1-2.4.6-1.31 as a component of SUSE Linux Enterprise Module for Basesystem 15 libwsutil8-2.4.6-1.31 as a component of SUSE Linux Enterprise Module for Basesystem 15 wireshark-2.4.6-1.31 as a component of SUSE Linux Enterprise Module for Basesystem 15 wireshark-devel-2.4.6-1.31 as a component of SUSE Linux Enterprise Module for Desktop Applications 15 wireshark-ui-qt-2.4.6-1.31 as a component of SUSE Linux Enterprise Module for Desktop Applications 15 wireshark-1.10.10-0.2.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA wireshark-1.10.10-0.2.1 as a component of SUSE Linux Enterprise Server 11 SP3 wireshark-1.10.10-0.2.1 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA wireshark-1.10.13-0.2.1 as a component of SUSE Linux Enterprise Server 11 SP4 libwireshark18-4.4.7-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libwiretap15-4.4.7-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 libwsutil16-4.4.7-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 wireshark-4.4.7-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 wireshark-devel-4.4.7-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 wireshark-ui-qt-4.4.7-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 wireshark-1.10.10-0.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 wireshark-1.10.11-0.2.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP3 wireshark-devel-1.10.10-0.2.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP3 wireshark-1.10.13-0.2.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 wireshark-devel-1.10.13-0.2.1 as a component of SUSE Linux Enterprise Software Development Kit 11 SP4 wireshark-2.2.2-1.1 as a component of openSUSE Tumbleweed wireshark-devel-2.2.2-1.1 as a component of openSUSE Tumbleweed wireshark-ui-gtk-2.2.2-1.1 as a component of openSUSE Tumbleweed wireshark-ui-qt-2.2.2-1.1 as a component of openSUSE Tumbleweed The SnifferDecompress function in wiretap/ngsniffer.c in the DOS Sniffer file parser in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 does not properly handle empty input data, which allows remote attackers to cause a denial of service (application crash) via a crafted file. CVE-2014-6429 SUSE Liberty Linux 7:wireshark-1.10.3-12.el7_0 SUSE Liberty Linux 7:wireshark-devel-1.10.3-12.el7_0 SUSE Liberty Linux 7:wireshark-gnome-1.10.3-12.el7_0 SUSE Linux Enterprise Desktop 11 SP3:wireshark-1.10.10-0.2.1 SUSE Linux Enterprise Module for Basesystem 15:libwireshark9-2.4.6-1.31 SUSE Linux Enterprise Module for Basesystem 15:libwiretap7-2.4.6-1.31 SUSE Linux Enterprise Module for Basesystem 15:libwscodecs1-2.4.6-1.31 SUSE Linux Enterprise Module for Basesystem 15:libwsutil8-2.4.6-1.31 SUSE Linux Enterprise Module for Basesystem 15:wireshark-2.4.6-1.31 SUSE Linux Enterprise Module for Desktop Applications 15:wireshark-devel-2.4.6-1.31 SUSE Linux Enterprise Module for Desktop Applications 15:wireshark-ui-qt-2.4.6-1.31 SUSE Linux Enterprise Server 11 SP1-TERADATA:wireshark-1.10.10-0.2.1 SUSE Linux Enterprise Server 11 SP3:wireshark-1.10.10-0.2.1 SUSE Linux Enterprise Server 11 SP3-TERADATA:wireshark-1.10.10-0.2.1 SUSE Linux Enterprise Server 11 SP4:wireshark-1.10.13-0.2.1 SUSE Linux Enterprise Server 16.0:libwireshark18-4.4.7-160000.2.2 SUSE Linux Enterprise Server 16.0:libwiretap15-4.4.7-160000.2.2 SUSE Linux Enterprise Server 16.0:libwsutil16-4.4.7-160000.2.2 SUSE Linux Enterprise Server 16.0:wireshark-4.4.7-160000.2.2 SUSE Linux Enterprise Server 16.0:wireshark-devel-4.4.7-160000.2.2 SUSE Linux Enterprise Server 16.0:wireshark-ui-qt-4.4.7-160000.2.2 SUSE Linux Enterprise Server for SAP Applications 11 SP3:wireshark-1.10.10-0.2.1 SUSE Linux Enterprise Software Development Kit 11 SP3:wireshark-1.10.11-0.2.1 SUSE Linux Enterprise Software Development Kit 11 SP3:wireshark-devel-1.10.10-0.2.1 SUSE Linux Enterprise Software Development Kit 11 SP4:wireshark-1.10.13-0.2.1 SUSE Linux Enterprise Software Development Kit 11 SP4:wireshark-devel-1.10.13-0.2.1 openSUSE Tumbleweed:wireshark-2.2.2-1.1 openSUSE Tumbleweed:wireshark-devel-2.2.2-1.1 openSUSE Tumbleweed:wireshark-ui-gtk-2.2.2-1.1 openSUSE Tumbleweed:wireshark-ui-qt-2.2.2-1.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P