SUSE-SU-2015:1676-1

Source
https://www.suse.com/support/update/announcement/2015/suse-su-20151676-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2015:1676-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2015:1676-1
Related
Published
2015-09-16T11:51:22Z
Modified
2015-09-16T11:51:22Z
Summary
Security update for wireshark
Details

Wireshark has been updated to 1.12.7. (FATE#319388)

The following vulnerabilities have been fixed: * Wireshark could crash when adding an item to the protocol tree. wnpa-sec-2015-21 CVE-2015-6241 * Wireshark could attempt to free invalid memory. wnpa-sec-2015-22 CVE-2015-6242 * Wireshark could crash when searching for a protocol dissector. wnpa-sec-2015-23 CVE-2015-6243 * The ZigBee dissector could crash. wnpa-sec-2015-24 CVE-2015-6244 * The GSM RLC/MAC dissector could go into an infinite loop. wnpa-sec-2015-25 CVE-2015-6245 * The WaveAgent dissector could crash. wnpa-sec-2015-26 CVE-2015-6246 * The OpenFlow dissector could go into an infinite loop. wnpa-sec-2015-27 CVE-2015-6247 * Wireshark could crash due to invalid ptvcursor length checking. wnpa-sec-2015-28 CVE-2015-6248 * The WCCP dissector could crash. wnpa-sec-2015-29 CVE-2015-6249 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.7.html

Also a fix from 1.12.6 in GSM DTAP was backported. (bnc#935158 CVE-2015-4652)

References

Affected packages

SUSE:Linux Enterprise Software Development Kit 11 SP3 / wireshark

Package

Name
wireshark
Purl
purl:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.12.7-0.5.3

Ecosystem specific

{
    "binaries": [
        {
            "wireshark-devel": "1.12.7-0.5.3",
            "wireshark": "1.12.7-0.5.3"
        }
    ]
}

SUSE:Linux Enterprise Software Development Kit 11 SP4 / wireshark

Package

Name
wireshark
Purl
purl:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.12.7-0.5.3

Ecosystem specific

{
    "binaries": [
        {
            "wireshark-devel": "1.12.7-0.5.3",
            "wireshark": "1.12.7-0.5.3"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP3 / wireshark

Package

Name
wireshark
Purl
purl:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.12.7-0.5.3

Ecosystem specific

{
    "binaries": [
        {
            "wireshark": "1.12.7-0.5.3"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP3-TERADATA / wireshark

Package

Name
wireshark
Purl
purl:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-TERADATA

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.12.7-0.5.3

Ecosystem specific

{
    "binaries": [
        {
            "wireshark": "1.12.7-0.5.3"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 11 SP3 / wireshark

Package

Name
wireshark
Purl
purl:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.12.7-0.5.3

Ecosystem specific

{
    "binaries": [
        {
            "wireshark": "1.12.7-0.5.3"
        }
    ]
}

SUSE:Linux Enterprise Server 11 SP4 / wireshark

Package

Name
wireshark
Purl
purl:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.12.7-0.5.3

Ecosystem specific

{
    "binaries": [
        {
            "wireshark": "1.12.7-0.5.3"
        }
    ]
}

SUSE:Linux Enterprise Server for SAP Applications 11 SP4 / wireshark

Package

Name
wireshark
Purl
purl:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.12.7-0.5.3

Ecosystem specific

{
    "binaries": [
        {
            "wireshark": "1.12.7-0.5.3"
        }
    ]
}