A heap-based buffer overflow flaw was found in the Wireshark Local
Download Sharing Service (LDSS) dissector. If Wireshark read a malformed
packet off a network or opened a malicious dump file, it could crash or,
possibly, execute arbitrary code as the user running Wireshark.
(CVE-2010-4300)
A denial of service flaw was found in Wireshark. Wireshark could crash
or stop responding if it read a malformed packet off a network, or
opened a malicious dump file. (CVE-2010-3445)
All running instances of Wireshark must be restarted for the update to
take effect.