Security update for wireshark

Announcement ID:	SUSE-SU-2015:0307-1
Rating:	moderate
References:	bsc#912365 bsc#912368 bsc#912369 bsc#912370 bsc#912372
Cross-References:	CVE-2015-0559 CVE-2015-0560 CVE-2015-0561 CVE-2015-0562 CVE-2015-0563 CVE-2015-0564
CVSS scores:
Affected Products:	SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Software Development Kit 12

An update that solves six vulnerabilities can now be installed.

Description:

  This update fixes the following security issues:

• The following vulnerabilities allowed Wireshark to be crashed by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.
• The WCCP dissector could crash wnpa-sec-2015-01 CVE-2015-0559 CVE-2015-0560 [boo#912365]
• The LPP dissector could crash. wnpa-sec-2015-02 CVE-2015-0561 [boo#912368]
• The DEC DNA Routing Protocol dissector could crash. wnpa-sec-2015-03 CVE-2015-0562 [boo#912369]
• The SMTP dissector could crash. wnpa-sec-2015-04 CVE-2015-0563 [boo#912370]
• Wireshark could crash while decypting TLS/SSL sessions. wnpa-sec-2015-05 CVE-2015-0564 [boo#912372]

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Linux Enterprise Desktop 12
  zypper in -t patch SUSE-SLE-DESKTOP-12-2015-81=1
• SUSE Linux Enterprise Software Development Kit 12
  zypper in -t patch SUSE-SLE-SDK-12-2015-81=1
• SUSE Linux Enterprise Server 12
  zypper in -t patch SUSE-SLE-SERVER-12-2015-81=1
• SUSE Linux Enterprise Server for SAP Applications 12
  zypper in -t patch SUSE-SLE-SERVER-12-2015-81=1

Package List:

• SUSE Linux Enterprise Desktop 12 (x86_64)
  • wireshark-1.10.12-4.1
  • wireshark-debuginfo-1.10.12-4.1
  • wireshark-debugsource-1.10.12-4.1
• SUSE Linux Enterprise Software Development Kit 12 (ppc64le s390x x86_64)
  • wireshark-devel-1.10.12-4.1
  • wireshark-debuginfo-1.10.12-4.1
  • wireshark-debugsource-1.10.12-4.1
• SUSE Linux Enterprise Server 12 (ppc64le s390x x86_64)
  • wireshark-1.10.12-4.1
  • wireshark-debuginfo-1.10.12-4.1
  • wireshark-debugsource-1.10.12-4.1
• SUSE Linux Enterprise Server for SAP Applications 12 (x86_64)
  • wireshark-1.10.12-4.1
  • wireshark-debuginfo-1.10.12-4.1
  • wireshark-debugsource-1.10.12-4.1

References:

• https://www.suse.com/security/cve/CVE-2015-0559.html
• https://www.suse.com/security/cve/CVE-2015-0560.html
• https://www.suse.com/security/cve/CVE-2015-0561.html
• https://www.suse.com/security/cve/CVE-2015-0562.html
• https://www.suse.com/security/cve/CVE-2015-0563.html
• https://www.suse.com/security/cve/CVE-2015-0564.html
• https://bugzilla.suse.com/show_bug.cgi?id=912365
• https://bugzilla.suse.com/show_bug.cgi?id=912368
• https://bugzilla.suse.com/show_bug.cgi?id=912369
• https://bugzilla.suse.com/show_bug.cgi?id=912370
• https://bugzilla.suse.com/show_bug.cgi?id=912372