Security update for wireshark SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2016:1974-1 Final 1 1 2016-08-05T18:20:57Z current 2016-08-05T18:20:57Z 2016-08-05T18:20:57Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for wireshark Wireshark was updated to 1.12.13 to fix a number of minor security issues and bugs. This release fixes a number issues in protocol dissectors that could have allowed a remote attacker to crash Wireshark or cause excessive CPU usage through specially crafted packages inserted into the network or a capture file. - CVE-2016-6504: NDS dissector crash (boo#991012) - CVE-2016-6505: PacketBB crash (boo#991013) - CVE-2016-6506: WSP infinite loop (boo#991015) - CVE-2016-6507: MMSE infinite loop (boo#991016) - CVE-2016-6508: RLC long loop (boo#991017) - CVE-2016-6509: LDSS dissector crash (boo#991018) - CVE-2016-6510: RLC dissector crash (boo#991019) - CVE-2016-6511: OpenFlow long loop (boo#991020) This update also includes further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.13.html The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2016-08/msg00023.html E-Mail link for openSUSE-SU-2016:1974-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.1 wireshark-1.12.13-29.1 wireshark-devel-1.12.13-29.1 wireshark-ui-gtk-1.12.13-29.1 wireshark-ui-qt-1.12.13-29.1 wireshark-1.12.13-29.1 as a component of openSUSE Leap 42.1 wireshark-devel-1.12.13-29.1 as a component of openSUSE Leap 42.1 wireshark-ui-gtk-1.12.13-29.1 as a component of openSUSE Leap 42.1 wireshark-ui-qt-1.12.13-29.1 as a component of openSUSE Leap 42.1 epan/dissectors/packet-ncp2222.inc in the NDS dissector in Wireshark 1.12.x before 1.12.13 does not properly maintain a ptvc data structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet. CVE-2016-6504 openSUSE Leap 42.1:wireshark-1.12.13-29.1 openSUSE Leap 42.1:wireshark-devel-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-gtk-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-qt-1.12.13-29.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2016-08/msg00023.html https://www.suse.com/security/cve/CVE-2016-6504.html CVE-2016-6504 https://bugzilla.suse.com/991012 SUSE Bug 991012 epan/dissectors/packet-packetbb.c in the PacketBB dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted packet. CVE-2016-6505 openSUSE Leap 42.1:wireshark-1.12.13-29.1 openSUSE Leap 42.1:wireshark-devel-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-gtk-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-qt-1.12.13-29.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2016-08/msg00023.html https://www.suse.com/security/cve/CVE-2016-6505.html CVE-2016-6505 https://bugzilla.suse.com/991013 SUSE Bug 991013 epan/dissectors/packet-wsp.c in the WSP dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet. CVE-2016-6506 openSUSE Leap 42.1:wireshark-1.12.13-29.1 openSUSE Leap 42.1:wireshark-devel-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-gtk-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-qt-1.12.13-29.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2016-08/msg00023.html https://www.suse.com/security/cve/CVE-2016-6506.html CVE-2016-6506 https://bugzilla.suse.com/991015 SUSE Bug 991015 epan/dissectors/packet-mmse.c in the MMSE dissector in Wireshark 1.12.x before 1.12.13 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet. CVE-2016-6507 openSUSE Leap 42.1:wireshark-1.12.13-29.1 openSUSE Leap 42.1:wireshark-devel-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-gtk-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-qt-1.12.13-29.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2016-08/msg00023.html https://www.suse.com/security/cve/CVE-2016-6507.html CVE-2016-6507 https://bugzilla.suse.com/991016 SUSE Bug 991016 epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (large loop) via a crafted packet. CVE-2016-6508 openSUSE Leap 42.1:wireshark-1.12.13-29.1 openSUSE Leap 42.1:wireshark-devel-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-gtk-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-qt-1.12.13-29.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2016-08/msg00023.html https://www.suse.com/security/cve/CVE-2016-6508.html CVE-2016-6508 https://bugzilla.suse.com/991017 SUSE Bug 991017 epan/dissectors/packet-ldss.c in the LDSS dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 mishandles conversations, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. CVE-2016-6509 openSUSE Leap 42.1:wireshark-1.12.13-29.1 openSUSE Leap 42.1:wireshark-devel-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-gtk-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-qt-1.12.13-29.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2016-08/msg00023.html https://www.suse.com/security/cve/CVE-2016-6509.html CVE-2016-6509 https://bugzilla.suse.com/991018 SUSE Bug 991018 Off-by-one error in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet. CVE-2016-6510 openSUSE Leap 42.1:wireshark-1.12.13-29.1 openSUSE Leap 42.1:wireshark-devel-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-gtk-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-qt-1.12.13-29.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2016-08/msg00023.html https://www.suse.com/security/cve/CVE-2016-6510.html CVE-2016-6510 https://bugzilla.suse.com/991019 SUSE Bug 991019 epan/proto.c in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (OpenFlow dissector large loop) via a crafted packet. CVE-2016-6511 openSUSE Leap 42.1:wireshark-1.12.13-29.1 openSUSE Leap 42.1:wireshark-devel-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-gtk-1.12.13-29.1 openSUSE Leap 42.1:wireshark-ui-qt-1.12.13-29.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2016-08/msg00023.html https://www.suse.com/security/cve/CVE-2016-6511.html CVE-2016-6511 https://bugzilla.suse.com/991020 SUSE Bug 991020