Key Information Summary Issue Title: ASN.1 aligned PER dissector fails to check return value of g_malloc() Status: Closed (Done) Creation Date: May 27, 2013 Reporter: Oliver-Tobias Ripka Status: RESOLVED FIXED Product: Wireshark Component: Dissection engine (libwireshark) Operating System: All Platform: All Version: Git Related CVE: CVE-2013-4935 Attachments: crash1.pcap (capture file used to reproduce the crash) Vulnerability Details Issue Description In the function , the return value of is not checked: If the variable is set to a very large value (e.g., 0xffffffff), may return , leading to a program crash. Code Example Solution Check the return value of after the call to ensure it is not , and handle allocation failures appropriately to prevent program crashes.