Security update for wireshark

Announcement ID: SUSE-SU-2015:1676-1
Rating: moderate
References:
Cross-References:
CVSS scores:
Affected Products:
  • SLES for SAP Applications 11-SP3
  • SLES for SAP Applications 11-SP4
  • SUSE Linux Enterprise Desktop 11 SP3
  • SUSE Linux Enterprise Desktop 11 SP4
  • SUSE Linux Enterprise Server 11 SP3
  • SUSE Linux Enterprise Server 11 SP3 for VMware 11-SP3
  • SUSE Linux Enterprise Server 11 SP4
  • SUSE Linux Enterprise Software Development Kit 11 SP3
  • SUSE Linux Enterprise Software Development Kit 11 SP4

An update that solves 11 vulnerabilities can now be installed.

Description:

Wireshark has been updated to 1.12.7. (FATE#319388)

The following vulnerabilities have been fixed: * Wireshark could crash when adding an item to the protocol tree. wnpa-sec-2015-21 CVE-2015-6241 * Wireshark could attempt to free invalid memory. wnpa-sec-2015-22 CVE-2015-6242 * Wireshark could crash when searching for a protocol dissector. wnpa-sec-2015-23 CVE-2015-6243 * The ZigBee dissector could crash. wnpa-sec-2015-24 CVE-2015-6244 * The GSM RLC/MAC dissector could go into an infinite loop. wnpa-sec-2015-25 CVE-2015-6245 * The WaveAgent dissector could crash. wnpa-sec-2015-26 CVE-2015-6246 * The OpenFlow dissector could go into an infinite loop. wnpa-sec-2015-27 CVE-2015-6247 * Wireshark could crash due to invalid ptvcursor length checking. wnpa-sec-2015-28 CVE-2015-6248 * The WCCP dissector could crash. wnpa-sec-2015-29 CVE-2015-6249 * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-1.12.7.html

Also a fix from 1.12.6 in GSM DTAP was backported. (bnc#935158 CVE-2015-4652)

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

  • SUSE Linux Enterprise Desktop 11 SP3
    zypper in -t patch sledsp3-wireshark-1127-12112=1
  • SUSE Linux Enterprise Desktop 11 SP4
    zypper in -t patch sledsp4-wireshark-1127-12112=1
  • SUSE Linux Enterprise Server 11 SP3 for VMware 11-SP3
    zypper in -t patch slessp3-wireshark-1127-12112=1
  • SUSE Linux Enterprise Server 11 SP3
    zypper in -t patch slessp3-wireshark-1127-12112=1
  • SLES for SAP Applications 11-SP3
    zypper in -t patch slessp3-wireshark-1127-12112=1
  • SUSE Linux Enterprise Software Development Kit 11 SP3
    zypper in -t patch sdksp3-wireshark-1127-12112=1
  • SUSE Linux Enterprise Software Development Kit 11 SP4
    zypper in -t patch sdksp4-wireshark-1127-12112=1
  • SUSE Linux Enterprise Server 11 SP4
    zypper in -t patch slessp4-wireshark-1127-12112=1
  • SLES for SAP Applications 11-SP4
    zypper in -t patch slessp4-wireshark-1127-12112=1

Package List:

  • SUSE Linux Enterprise Desktop 11 SP3 (x86_64 i586)
    • wireshark-1.12.7-0.5.3
  • SUSE Linux Enterprise Desktop 11 SP4 (x86_64 i586)
    • wireshark-1.12.7-0.5.3
  • SUSE Linux Enterprise Server 11 SP3 for VMware 11-SP3 (x86_64 i586)
    • wireshark-1.12.7-0.5.3
  • SUSE Linux Enterprise Server 11 SP3 (s390x x86_64 i586 ppc64 ia64)
    • wireshark-1.12.7-0.5.3
  • SLES for SAP Applications 11-SP3 (x86_64)
    • wireshark-1.12.7-0.5.3
  • SUSE Linux Enterprise Software Development Kit 11 SP3 (x86_64 i586)
    • wireshark-1.12.7-0.5.3
  • SUSE Linux Enterprise Software Development Kit 11 SP3 (s390x x86_64 i586 ppc64 ia64)
    • wireshark-devel-1.12.7-0.5.3
  • SUSE Linux Enterprise Software Development Kit 11 SP4 (x86_64 i586)
    • wireshark-1.12.7-0.5.3
  • SUSE Linux Enterprise Software Development Kit 11 SP4 (s390x x86_64 i586 ppc64 ia64)
    • wireshark-devel-1.12.7-0.5.3
  • SUSE Linux Enterprise Server 11 SP4 (s390x x86_64 i586 ppc64 ia64)
    • wireshark-1.12.7-0.5.3
  • SLES for SAP Applications 11-SP4 (ppc64 x86_64)
    • wireshark-1.12.7-0.5.3

References: