{"id":"CVE-2014-4020","details":"The dissect_frame function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended to represent an error condition, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.","modified":"2026-04-16T06:18:14.666006126Z","published":"2014-06-18T16:55:08Z","related":["openSUSE-SU-2024:10199-1"],"references":[{"type":"ADVISORY","url":"http://www.wireshark.org/security/wnpa-sec-2014-07.html"},{"type":"EVIDENCE","url":"https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=10030"},{"type":"EVIDENCE","url":"https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=9999"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-updates/2014-06/msg00049.html"},{"type":"WEB","url":"https://code.wireshark.org/review/gitweb?p=wireshark.git%3Ba=commit%3Bh=beb119f911a698d44f4baa06d888bb1e775983bc"}],"schema_version":"1.7.5"}