Security update for wireshark SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2015:0657-2 Final 1 1 2015-03-12T10:19:39Z current 2015-03-12T10:19:39Z 2015-03-12T10:19:39Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for wireshark Wireshark was updated to 1.10.13 to fix bugs and security issues. The following security issues were fixed: * The WCP dissector could crash. wnpa-sec-2015-07 CVE-2015-2188 [bnc#920696] * The pcapng file parser could crash. wnpa-sec-2015-08 CVE-2015-2189 [bnc#920697] * The TNEF dissector could go into an infinite loop. wnpa-sec-2015-10 CVE-2015-2191 [bnc#920699] - Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.10.13.html The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-2015-151 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2015/suse-su-20150657-2/ Link for SUSE-SU-2015:0657-2 https://lists.suse.com/pipermail/sle-security-updates/2015-April/001325.html E-Mail link for SUSE-SU-2015:0657-2 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/920696 SUSE Bug 920696 https://bugzilla.suse.com/920697 SUSE Bug 920697 https://bugzilla.suse.com/920699 SUSE Bug 920699 https://www.suse.com/security/cve/CVE-2015-2188/ SUSE CVE CVE-2015-2188 page https://www.suse.com/security/cve/CVE-2015-2189/ SUSE CVE CVE-2015-2189 page https://www.suse.com/security/cve/CVE-2015-2191/ SUSE CVE CVE-2015-2191 page SUSE Linux Enterprise Desktop 12 wireshark-1.10.13-8.1 wireshark-1.10.13-8.1 as a component of SUSE Linux Enterprise Desktop 12 epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 does not properly initialize a data structure, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet that is improperly handled during decompression. CVE-2015-2188 SUSE Linux Enterprise Desktop 12:wireshark-1.10.13-8.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150657-2/ https://www.suse.com/security/cve/CVE-2015-2188.html CVE-2015-2188 https://bugzilla.suse.com/920696 SUSE Bug 920696 Off-by-one error in the pcapng_read function in wiretap/pcapng.c in the pcapng file parser in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via an invalid Interface Statistics Block (ISB) interface ID in a crafted packet. CVE-2015-2189 SUSE Linux Enterprise Desktop 12:wireshark-1.10.13-8.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150657-2/ https://www.suse.com/security/cve/CVE-2015-2189.html CVE-2015-2189 https://bugzilla.suse.com/920697 SUSE Bug 920697 Integer overflow in the dissect_tnef function in epan/dissectors/packet-tnef.c in the TNEF dissector in Wireshark 1.10.x before 1.10.13 and 1.12.x before 1.12.4 allows remote attackers to cause a denial of service (infinite loop) via a crafted length field in a packet. CVE-2015-2191 SUSE Linux Enterprise Desktop 12:wireshark-1.10.13-8.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150657-2/ https://www.suse.com/security/cve/CVE-2015-2191.html CVE-2015-2191 https://bugzilla.suse.com/920699 SUSE Bug 920699