The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
The csnStreamDissector function in epan/dissectors/packet-csn1.c in the CSN.1 dissector in Wireshark 1.6.x before 1.6.2 does not initialize a certain structure member, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.
|61928||Mandriva Linux Security Advisory : wireshark (MDVSA-2011:138)||Nessus||Mandriva Local Security Checks|
|56426||GLSA-201110-02 : Wireshark: Multiple vulnerabilities||Nessus||Gentoo Local Security Checks|
|56164||Wireshark 1.6.x < 1.6.2 Multiple Vulnerabilities||Nessus||Windows|