Security update for wireshark SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:0899-1 Final 1 1 2018-04-07T17:37:07Z current 2018-04-07T17:37:07Z 2018-04-07T17:37:07Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for wireshark This update for wireshark fixes the following issues: Minor vulnerabilities that could be used to trigger dissector crashes or cause dissectors to go into large infinite loops by making Wireshark read specially crafted packages from the network or capture files (boo#1088200): - CVE-2018-9264: ADB dissector crash - CVE-2018-9260: IEEE 802.15.4 dissector crash - CVE-2018-9261: NBAP dissector crash - CVE-2018-9262: VLAN dissector crash - CVE-2018-9256: LWAPP dissector crash - CVE-2018-9263: Kerberos dissector crash - CVE-2018-9259: MP4 dissector crash - Memory leaks in multiple dissectors: CVE-2018-9265, CVE-2018-9266, CVE-2018-9267, CVE-2018-9268, CVE-2018-9269, CVE-2018-9270, CVE-2018-9271, CVE-2018-9272, CVE-2018-9273, CVE-2018-9274 This update also contains all upstream bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.2.14.html The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html E-Mail link for openSUSE-SU-2018:0899-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 wireshark-2.2.14-38.1 wireshark-devel-2.2.14-38.1 wireshark-ui-gtk-2.2.14-38.1 wireshark-ui-qt-2.2.14-38.1 wireshark-2.2.14-38.1 as a component of openSUSE Leap 42.3 wireshark-devel-2.2.14-38.1 as a component of openSUSE Leap 42.3 wireshark-ui-gtk-2.2.14-38.1 as a component of openSUSE Leap 42.3 wireshark-ui-qt-2.2.14-38.1 as a component of openSUSE Leap 42.3 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the LWAPP dissector could crash. This was addressed in epan/dissectors/packet-lwapp.c by limiting the encapsulation levels to restrict the recursion depth. CVE-2018-9256 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9256.html CVE-2018-9256 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the MP4 dissector could crash. This was addressed in epan/dissectors/file-mp4.c by restricting the box recursion depth. CVE-2018-9259 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9259.html CVE-2018-9259 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the IEEE 802.15.4 dissector could crash. This was addressed in epan/dissectors/packet-ieee802154.c by ensuring that an allocation step occurs. CVE-2018-9260 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9260.html CVE-2018-9260 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop that ends with a heap-based buffer overflow. This was addressed in epan/dissectors/packet-nbap.c by prohibiting the self-linking of DCH-IDs. CVE-2018-9261 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9261.html CVE-2018-9261 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the VLAN dissector could crash. This was addressed in epan/dissectors/packet-vlan.c by limiting VLAN tag nesting to restrict the recursion depth. CVE-2018-9262 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9262.html CVE-2018-9262 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the Kerberos dissector could crash. This was addressed in epan/dissectors/packet-kerberos.c by ensuring a nonzero key length. CVE-2018-9263 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9263.html CVE-2018-9263 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the ADB dissector could crash with a heap-based buffer overflow. This was addressed in epan/dissectors/packet-adb.c by checking for a length inconsistency. CVE-2018-9264 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9264.html CVE-2018-9264 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-tn3270.c has a memory leak. CVE-2018-9265 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9265.html CVE-2018-9265 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-isup.c has a memory leak. CVE-2018-9266 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9266.html CVE-2018-9266 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-lapd.c has a memory leak. CVE-2018-9267 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9267.html CVE-2018-9267 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-smb2.c has a memory leak. CVE-2018-9268 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9268.html CVE-2018-9268 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-giop.c has a memory leak. CVE-2018-9269 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9269.html CVE-2018-9269 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/oids.c has a memory leak. CVE-2018-9270 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9270.html CVE-2018-9270 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-multipart.c has a memory leak. CVE-2018-9271 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9271.html CVE-2018-9271 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-h223.c has a memory leak. CVE-2018-9272 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9272.html CVE-2018-9272 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-pcp.c has a memory leak. CVE-2018-9273 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9273.html CVE-2018-9273 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, ui/failure_message.c has a memory leak. CVE-2018-9274 openSUSE Leap 42.3:wireshark-2.2.14-38.1 openSUSE Leap 42.3:wireshark-devel-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-gtk-2.2.14-38.1 openSUSE Leap 42.3:wireshark-ui-qt-2.2.14-38.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-04/msg00015.html https://www.suse.com/security/cve/CVE-2018-9274.html CVE-2018-9274 https://bugzilla.suse.com/1088200 SUSE Bug 1088200