CVE-2009-3241 Common Vulnerabilities and Exposures

Upstream information

CVE-2009-3241 at MITRE

Description

Unspecified vulnerability in the OpcUa (OPC UA) dissector in Wireshark 0.99.6 through 1.0.8 and 1.2.0 through 1.2.1 allows remote attackers to cause a denial of service (memory and CPU consumption) via malformed OPCUA Service CallRequest packets.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v2 Scores
	National Vulnerability Database
Base Score	7.8
Vector	AV:N/AC:L/Au:N/C:N/I:N/A:C
Access Vector	Network
Access Complexity	Low
Authentication	None
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Complete

SUSE Bugzilla entry: 541654 [RESOLVED / FIXED]

SUSE Security Advisories:

SUSE-SR:2009:016, published Tue, 13 Oct 2009 14:00:00 +0000

List of released packages

SUSE Timeline for this CVE

CVE page created: Fri Jun 28 06:59:46 2013
CVE page last modified: Sat Jun 15 20:58:21 2024

Product(s)	Fixed package version(s)	References
SUSE Linux Enterprise Desktop 12 SP1	`wireshark >= 1.12.7-15.1` `wireshark-devel >= 1.12.7-15.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP1 GA wireshark-1.12.7-15.1 SUSE Linux Enterprise Software Development Kit 12 SP1 GA wireshark-devel-1.12.7-15.1
SUSE Linux Enterprise Desktop 12 SP2	`wireshark >= 1.12.13-31.1` `wireshark-devel >= 1.12.13-31.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP2 GA wireshark-1.12.13-31.1 SUSE Linux Enterprise Software Development Kit 12 SP2 GA wireshark-devel-1.12.13-31.1
SUSE Linux Enterprise Desktop 12 SP3	`libwireshark8 >= 2.2.7-47.1` `libwiretap6 >= 2.2.7-47.1` `libwscodecs1 >= 2.2.7-47.1` `libwsutil7 >= 2.2.7-47.1` `wireshark >= 2.2.7-47.1` `wireshark-devel >= 2.2.7-47.1` `wireshark-gtk >= 2.2.7-47.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP3 GA libwireshark8-2.2.7-47.1 SUSE Linux Enterprise Software Development Kit 12 SP3 GA wireshark-devel-2.2.7-47.1
SUSE Linux Enterprise Desktop 12 SP4	`libwireshark9 >= 2.4.9-48.29.1` `libwiretap7 >= 2.4.9-48.29.1` `libwscodecs1 >= 2.4.9-48.29.1` `libwsutil8 >= 2.4.9-48.29.1` `wireshark >= 2.4.9-48.29.1` `wireshark-devel >= 2.4.9-48.29.1` `wireshark-gtk >= 2.4.9-48.29.1`	Patchnames: SUSE Linux Enterprise Desktop 12 SP4 GA libwireshark9-2.4.9-48.29.1 SUSE Linux Enterprise Software Development Kit 12 SP4 GA wireshark-devel-2.4.9-48.29.1
SUSE Linux Enterprise Desktop 12	`wireshark >= 1.10.9-1.11` `wireshark-devel >= 1.10.9-1.11`	Patchnames: SUSE Linux Enterprise Desktop 12 GA wireshark-1.10.9-1.11 SUSE Linux Enterprise Software Development Kit 12 GA wireshark-devel-1.10.9-1.11
SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 15	`libwireshark9 >= 2.4.6-1.31` `libwiretap7 >= 2.4.6-1.31` `libwscodecs1 >= 2.4.6-1.31` `libwsutil8 >= 2.4.6-1.31` `wireshark >= 2.4.6-1.31` `wireshark-devel >= 2.4.6-1.31` `wireshark-ui-qt >= 2.4.6-1.31`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA libwireshark9-2.4.6-1.31 SUSE Linux Enterprise Module for Desktop Applications 15 GA wireshark-devel-2.4.6-1.31
SUSE Linux Enterprise High Performance Computing 12 SP5	`libwireshark9 >= 2.4.16-48.51.1` `libwiretap7 >= 2.4.16-48.51.1` `libwscodecs1 >= 2.4.16-48.51.1` `libwsutil8 >= 2.4.16-48.51.1` `wireshark >= 2.4.16-48.51.1` `wireshark-gtk >= 2.4.16-48.51.1`	Patchnames: SUSE Linux Enterprise High Performance Computing 12 SP5 GA libwireshark9-2.4.16-48.51.1
SUSE Linux Enterprise Module for Basesystem 15	`libwireshark9 >= 2.4.6-1.31` `libwiretap7 >= 2.4.6-1.31` `libwscodecs1 >= 2.4.6-1.31` `libwsutil8 >= 2.4.6-1.31` `wireshark >= 2.4.6-1.31`	Patchnames: SUSE Linux Enterprise Module for Basesystem 15 GA libwireshark9-2.4.6-1.31
SUSE Linux Enterprise Module for Desktop Applications 15	`wireshark-devel >= 2.4.6-1.31` `wireshark-ui-qt >= 2.4.6-1.31`	Patchnames: SUSE Linux Enterprise Module for Desktop Applications 15 GA wireshark-devel-2.4.6-1.31
SUSE Linux Enterprise Server 12 SP1	`wireshark >= 1.12.7-15.1` `wireshark-devel >= 1.12.7-15.1`	Patchnames: SUSE Linux Enterprise Server 12 SP1 GA wireshark-1.12.7-15.1 SUSE Linux Enterprise Software Development Kit 12 SP1 GA wireshark-devel-1.12.7-15.1
SUSE Linux Enterprise Server 12 SP2	`wireshark >= 1.12.13-31.1` `wireshark-devel >= 1.12.13-31.1`	Patchnames: SUSE Linux Enterprise Server 12 SP2 GA wireshark-1.12.13-31.1 SUSE Linux Enterprise Software Development Kit 12 SP2 GA wireshark-devel-1.12.13-31.1
SUSE Linux Enterprise Server 12 SP3	`libwireshark8 >= 2.2.7-47.1` `libwiretap6 >= 2.2.7-47.1` `libwscodecs1 >= 2.2.7-47.1` `libwsutil7 >= 2.2.7-47.1` `wireshark >= 2.2.7-47.1` `wireshark-devel >= 2.2.7-47.1` `wireshark-gtk >= 2.2.7-47.1`	Patchnames: SUSE Linux Enterprise Server 12 SP3 GA libwireshark8-2.2.7-47.1 SUSE Linux Enterprise Software Development Kit 12 SP3 GA wireshark-devel-2.2.7-47.1
SUSE Linux Enterprise Server 12 SP4	`libwireshark9 >= 2.4.9-48.29.1` `libwiretap7 >= 2.4.9-48.29.1` `libwscodecs1 >= 2.4.9-48.29.1` `libwsutil8 >= 2.4.9-48.29.1` `wireshark >= 2.4.9-48.29.1` `wireshark-devel >= 2.4.9-48.29.1` `wireshark-gtk >= 2.4.9-48.29.1`	Patchnames: SUSE Linux Enterprise Server 12 SP4 GA libwireshark9-2.4.9-48.29.1 SUSE Linux Enterprise Software Development Kit 12 SP4 GA wireshark-devel-2.4.9-48.29.1
SUSE Linux Enterprise Server 12 SP5	`libwireshark9 >= 2.4.16-48.51.1` `libwiretap7 >= 2.4.16-48.51.1` `libwscodecs1 >= 2.4.16-48.51.1` `libwsutil8 >= 2.4.16-48.51.1` `wireshark >= 2.4.16-48.51.1` `wireshark-devel >= 2.4.16-48.51.1` `wireshark-gtk >= 2.4.16-48.51.1`	Patchnames: SUSE Linux Enterprise Server 12 SP5 GA libwireshark9-2.4.16-48.51.1 SUSE Linux Enterprise Software Development Kit 12 SP5 GA wireshark-devel-2.4.16-48.51.1
SUSE Linux Enterprise Server 12	`wireshark >= 1.10.9-1.5` `wireshark-devel >= 1.10.9-1.11`	Patchnames: SUSE Linux Enterprise Server 12 GA wireshark-1.10.9-1.11 SUSE Linux Enterprise Software Development Kit 12 GA wireshark-devel-1.10.9-1.11
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2	`wireshark >= 1.12.13-31.1`	Patchnames: SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 GA wireshark-1.12.13-31.1
SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1	`wireshark-devel >= 1.12.7-15.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP1 GA wireshark-devel-1.12.7-15.1
SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP2	`wireshark-devel >= 1.12.13-31.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP2 GA wireshark-devel-1.12.13-31.1
SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3	`wireshark-devel >= 2.2.7-47.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP3 GA wireshark-devel-2.2.7-47.1
SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP4	`wireshark-devel >= 2.4.9-48.29.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP4 GA wireshark-devel-2.4.9-48.29.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP5	`wireshark-devel >= 2.4.16-48.51.1`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 SP5 GA wireshark-devel-2.4.16-48.51.1
SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Software Development Kit 12	`wireshark-devel >= 1.10.9-1.11`	Patchnames: SUSE Linux Enterprise Software Development Kit 12 GA wireshark-devel-1.10.9-1.11
openSUSE Tumbleweed	`wireshark >= 2.2.2-1.1` `wireshark-devel >= 2.2.2-1.1` `wireshark-ui-gtk >= 2.2.2-1.1` `wireshark-ui-qt >= 2.2.2-1.1`	Patchnames: openSUSE-Tumbleweed-2024-10199