libwireshark14-3.4.8-1.2 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11513 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libwireshark14-3.4.8-1.2 on GA media These are all security issues fixed in the libwireshark14-3.4.8-1.2 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11513 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11513 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2006-1932/ SUSE CVE CVE-2006-1932 page https://www.suse.com/security/cve/CVE-2006-4574/ SUSE CVE CVE-2006-4574 page https://www.suse.com/security/cve/CVE-2006-4805/ SUSE CVE CVE-2006-4805 page https://www.suse.com/security/cve/CVE-2006-5468/ SUSE CVE CVE-2006-5468 page https://www.suse.com/security/cve/CVE-2006-5469/ SUSE CVE CVE-2006-5469 page https://www.suse.com/security/cve/CVE-2006-5740/ SUSE CVE CVE-2006-5740 page https://www.suse.com/security/cve/CVE-2007-0456/ SUSE CVE CVE-2007-0456 page https://www.suse.com/security/cve/CVE-2007-0457/ SUSE CVE CVE-2007-0457 page https://www.suse.com/security/cve/CVE-2007-0458/ SUSE CVE CVE-2007-0458 page https://www.suse.com/security/cve/CVE-2007-0459/ SUSE CVE CVE-2007-0459 page https://www.suse.com/security/cve/CVE-2017-11406/ SUSE CVE CVE-2017-11406 page https://www.suse.com/security/cve/CVE-2017-11407/ SUSE CVE CVE-2017-11407 page https://www.suse.com/security/cve/CVE-2017-11408/ SUSE CVE CVE-2017-11408 page https://www.suse.com/security/cve/CVE-2017-13764/ SUSE CVE CVE-2017-13764 page https://www.suse.com/security/cve/CVE-2017-13765/ SUSE CVE CVE-2017-13765 page https://www.suse.com/security/cve/CVE-2017-13766/ SUSE CVE CVE-2017-13766 page https://www.suse.com/security/cve/CVE-2017-13767/ SUSE CVE CVE-2017-13767 page https://www.suse.com/security/cve/CVE-2017-15189/ SUSE CVE CVE-2017-15189 page https://www.suse.com/security/cve/CVE-2017-15190/ SUSE CVE CVE-2017-15190 page https://www.suse.com/security/cve/CVE-2017-15191/ SUSE CVE CVE-2017-15191 page https://www.suse.com/security/cve/CVE-2017-15192/ SUSE CVE CVE-2017-15192 page https://www.suse.com/security/cve/CVE-2017-15193/ SUSE CVE CVE-2017-15193 page https://www.suse.com/security/cve/CVE-2017-17083/ SUSE CVE CVE-2017-17083 page https://www.suse.com/security/cve/CVE-2017-17084/ SUSE CVE CVE-2017-17084 page https://www.suse.com/security/cve/CVE-2017-17085/ SUSE CVE CVE-2017-17085 page https://www.suse.com/security/cve/CVE-2017-5596/ SUSE CVE CVE-2017-5596 page https://www.suse.com/security/cve/CVE-2017-5597/ SUSE CVE CVE-2017-5597 page https://www.suse.com/security/cve/CVE-2017-5753/ SUSE CVE CVE-2017-5753 page https://www.suse.com/security/cve/CVE-2017-6467/ SUSE CVE CVE-2017-6467 page https://www.suse.com/security/cve/CVE-2017-6468/ SUSE CVE CVE-2017-6468 page https://www.suse.com/security/cve/CVE-2017-6469/ SUSE CVE CVE-2017-6469 page https://www.suse.com/security/cve/CVE-2017-6470/ SUSE CVE CVE-2017-6470 page https://www.suse.com/security/cve/CVE-2017-6471/ SUSE CVE CVE-2017-6471 page https://www.suse.com/security/cve/CVE-2017-6472/ SUSE CVE CVE-2017-6472 page https://www.suse.com/security/cve/CVE-2017-6473/ SUSE CVE CVE-2017-6473 page https://www.suse.com/security/cve/CVE-2017-6474/ SUSE CVE CVE-2017-6474 page https://www.suse.com/security/cve/CVE-2017-7700/ SUSE CVE CVE-2017-7700 page https://www.suse.com/security/cve/CVE-2017-7701/ SUSE CVE CVE-2017-7701 page https://www.suse.com/security/cve/CVE-2017-7702/ SUSE CVE CVE-2017-7702 page https://www.suse.com/security/cve/CVE-2017-7703/ SUSE CVE CVE-2017-7703 page https://www.suse.com/security/cve/CVE-2017-7704/ SUSE CVE CVE-2017-7704 page https://www.suse.com/security/cve/CVE-2017-7705/ SUSE CVE CVE-2017-7705 page https://www.suse.com/security/cve/CVE-2017-7745/ SUSE CVE CVE-2017-7745 page https://www.suse.com/security/cve/CVE-2017-7746/ SUSE CVE CVE-2017-7746 page https://www.suse.com/security/cve/CVE-2017-7747/ SUSE CVE CVE-2017-7747 page https://www.suse.com/security/cve/CVE-2017-7748/ SUSE CVE CVE-2017-7748 page https://www.suse.com/security/cve/CVE-2017-9343/ SUSE CVE CVE-2017-9343 page https://www.suse.com/security/cve/CVE-2017-9344/ SUSE CVE CVE-2017-9344 page https://www.suse.com/security/cve/CVE-2017-9345/ SUSE CVE CVE-2017-9345 page https://www.suse.com/security/cve/CVE-2017-9346/ SUSE CVE CVE-2017-9346 page https://www.suse.com/security/cve/CVE-2017-9347/ SUSE CVE CVE-2017-9347 page https://www.suse.com/security/cve/CVE-2017-9348/ SUSE CVE CVE-2017-9348 page https://www.suse.com/security/cve/CVE-2017-9349/ SUSE CVE CVE-2017-9349 page https://www.suse.com/security/cve/CVE-2017-9350/ SUSE CVE CVE-2017-9350 page https://www.suse.com/security/cve/CVE-2017-9351/ SUSE CVE CVE-2017-9351 page https://www.suse.com/security/cve/CVE-2017-9352/ SUSE CVE CVE-2017-9352 page https://www.suse.com/security/cve/CVE-2017-9353/ SUSE CVE CVE-2017-9353 page https://www.suse.com/security/cve/CVE-2017-9354/ SUSE CVE CVE-2017-9354 page https://www.suse.com/security/cve/CVE-2018-11354/ SUSE CVE CVE-2018-11354 page https://www.suse.com/security/cve/CVE-2018-11355/ SUSE CVE CVE-2018-11355 page https://www.suse.com/security/cve/CVE-2018-11356/ SUSE CVE CVE-2018-11356 page https://www.suse.com/security/cve/CVE-2018-11357/ SUSE CVE CVE-2018-11357 page https://www.suse.com/security/cve/CVE-2018-11358/ SUSE CVE CVE-2018-11358 page https://www.suse.com/security/cve/CVE-2018-11359/ SUSE CVE CVE-2018-11359 page https://www.suse.com/security/cve/CVE-2018-11360/ SUSE CVE CVE-2018-11360 page https://www.suse.com/security/cve/CVE-2018-11361/ SUSE CVE CVE-2018-11361 page https://www.suse.com/security/cve/CVE-2018-11362/ SUSE CVE CVE-2018-11362 page https://www.suse.com/security/cve/CVE-2018-12086/ SUSE CVE CVE-2018-12086 page https://www.suse.com/security/cve/CVE-2018-14339/ SUSE CVE CVE-2018-14339 page https://www.suse.com/security/cve/CVE-2018-14340/ SUSE CVE CVE-2018-14340 page https://www.suse.com/security/cve/CVE-2018-14341/ SUSE CVE CVE-2018-14341 page https://www.suse.com/security/cve/CVE-2018-14342/ SUSE CVE CVE-2018-14342 page https://www.suse.com/security/cve/CVE-2018-14343/ SUSE CVE CVE-2018-14343 page https://www.suse.com/security/cve/CVE-2018-14344/ SUSE CVE CVE-2018-14344 page https://www.suse.com/security/cve/CVE-2018-14367/ SUSE CVE CVE-2018-14367 page https://www.suse.com/security/cve/CVE-2018-14368/ SUSE CVE CVE-2018-14368 page https://www.suse.com/security/cve/CVE-2018-14369/ SUSE CVE CVE-2018-14369 page https://www.suse.com/security/cve/CVE-2018-14370/ SUSE CVE CVE-2018-14370 page https://www.suse.com/security/cve/CVE-2018-16056/ SUSE CVE CVE-2018-16056 page https://www.suse.com/security/cve/CVE-2018-16057/ SUSE CVE CVE-2018-16057 page https://www.suse.com/security/cve/CVE-2018-16058/ SUSE CVE CVE-2018-16058 page https://www.suse.com/security/cve/CVE-2018-18225/ SUSE CVE CVE-2018-18225 page https://www.suse.com/security/cve/CVE-2018-18226/ SUSE CVE CVE-2018-18226 page https://www.suse.com/security/cve/CVE-2018-18227/ SUSE CVE CVE-2018-18227 page https://www.suse.com/security/cve/CVE-2018-19622/ SUSE CVE CVE-2018-19622 page https://www.suse.com/security/cve/CVE-2018-19623/ SUSE CVE CVE-2018-19623 page https://www.suse.com/security/cve/CVE-2018-19624/ SUSE CVE CVE-2018-19624 page https://www.suse.com/security/cve/CVE-2018-19625/ SUSE CVE CVE-2018-19625 page https://www.suse.com/security/cve/CVE-2018-19626/ SUSE CVE CVE-2018-19626 page https://www.suse.com/security/cve/CVE-2018-19627/ SUSE CVE CVE-2018-19627 page https://www.suse.com/security/cve/CVE-2018-19628/ SUSE CVE CVE-2018-19628 page https://www.suse.com/security/cve/CVE-2018-5334/ SUSE CVE CVE-2018-5334 page https://www.suse.com/security/cve/CVE-2018-5335/ SUSE CVE CVE-2018-5335 page https://www.suse.com/security/cve/CVE-2018-5336/ SUSE CVE CVE-2018-5336 page https://www.suse.com/security/cve/CVE-2018-7320/ SUSE CVE CVE-2018-7320 page https://www.suse.com/security/cve/CVE-2018-7321/ SUSE CVE CVE-2018-7321 page https://www.suse.com/security/cve/CVE-2018-7325/ SUSE CVE CVE-2018-7325 page https://www.suse.com/security/cve/CVE-2018-7329/ SUSE CVE CVE-2018-7329 page https://www.suse.com/security/cve/CVE-2018-7333/ SUSE CVE CVE-2018-7333 page https://www.suse.com/security/cve/CVE-2018-7334/ SUSE CVE CVE-2018-7334 page https://www.suse.com/security/cve/CVE-2018-7335/ SUSE CVE CVE-2018-7335 page https://www.suse.com/security/cve/CVE-2018-7336/ SUSE CVE CVE-2018-7336 page https://www.suse.com/security/cve/CVE-2018-7337/ SUSE CVE CVE-2018-7337 page https://www.suse.com/security/cve/CVE-2018-7417/ SUSE CVE CVE-2018-7417 page https://www.suse.com/security/cve/CVE-2018-7418/ SUSE CVE CVE-2018-7418 page https://www.suse.com/security/cve/CVE-2018-7419/ SUSE CVE CVE-2018-7419 page https://www.suse.com/security/cve/CVE-2018-7420/ SUSE CVE CVE-2018-7420 page https://www.suse.com/security/cve/CVE-2018-9256/ SUSE CVE CVE-2018-9256 page https://www.suse.com/security/cve/CVE-2018-9257/ SUSE CVE CVE-2018-9257 page https://www.suse.com/security/cve/CVE-2018-9258/ SUSE CVE CVE-2018-9258 page https://www.suse.com/security/cve/CVE-2018-9260/ SUSE CVE CVE-2018-9260 page https://www.suse.com/security/cve/CVE-2018-9261/ SUSE CVE CVE-2018-9261 page https://www.suse.com/security/cve/CVE-2018-9262/ SUSE CVE CVE-2018-9262 page https://www.suse.com/security/cve/CVE-2018-9263/ SUSE CVE CVE-2018-9263 page https://www.suse.com/security/cve/CVE-2018-9264/ SUSE CVE CVE-2018-9264 page https://www.suse.com/security/cve/CVE-2018-9265/ SUSE CVE CVE-2018-9265 page https://www.suse.com/security/cve/CVE-2018-9269/ SUSE CVE CVE-2018-9269 page https://www.suse.com/security/cve/CVE-2018-9273/ SUSE CVE CVE-2018-9273 page https://www.suse.com/security/cve/CVE-2019-10894/ SUSE CVE CVE-2019-10894 page https://www.suse.com/security/cve/CVE-2019-10895/ SUSE CVE CVE-2019-10895 page https://www.suse.com/security/cve/CVE-2019-10896/ SUSE CVE CVE-2019-10896 page https://www.suse.com/security/cve/CVE-2019-10897/ SUSE CVE CVE-2019-10897 page https://www.suse.com/security/cve/CVE-2019-10898/ SUSE CVE CVE-2019-10898 page https://www.suse.com/security/cve/CVE-2019-10899/ SUSE CVE CVE-2019-10899 page https://www.suse.com/security/cve/CVE-2019-10900/ SUSE CVE CVE-2019-10900 page https://www.suse.com/security/cve/CVE-2019-10901/ SUSE CVE CVE-2019-10901 page https://www.suse.com/security/cve/CVE-2019-10902/ SUSE CVE CVE-2019-10902 page https://www.suse.com/security/cve/CVE-2019-10903/ SUSE CVE CVE-2019-10903 page https://www.suse.com/security/cve/CVE-2019-13619/ SUSE CVE CVE-2019-13619 page https://www.suse.com/security/cve/CVE-2019-16319/ SUSE CVE CVE-2019-16319 page https://www.suse.com/security/cve/CVE-2019-19553/ SUSE CVE CVE-2019-19553 page https://www.suse.com/security/cve/CVE-2019-5716/ SUSE CVE CVE-2019-5716 page https://www.suse.com/security/cve/CVE-2019-5717/ SUSE CVE CVE-2019-5717 page https://www.suse.com/security/cve/CVE-2019-5718/ SUSE CVE CVE-2019-5718 page https://www.suse.com/security/cve/CVE-2019-5719/ SUSE CVE CVE-2019-5719 page https://www.suse.com/security/cve/CVE-2019-5721/ SUSE CVE CVE-2019-5721 page https://www.suse.com/security/cve/CVE-2019-9208/ SUSE CVE CVE-2019-9208 page https://www.suse.com/security/cve/CVE-2019-9209/ SUSE CVE CVE-2019-9209 page https://www.suse.com/security/cve/CVE-2019-9214/ SUSE CVE CVE-2019-9214 page https://www.suse.com/security/cve/CVE-2020-11647/ SUSE CVE CVE-2020-11647 page https://www.suse.com/security/cve/CVE-2020-13164/ SUSE CVE CVE-2020-13164 page https://www.suse.com/security/cve/CVE-2020-15466/ SUSE CVE CVE-2020-15466 page https://www.suse.com/security/cve/CVE-2020-17498/ SUSE CVE CVE-2020-17498 page https://www.suse.com/security/cve/CVE-2020-25862/ SUSE CVE CVE-2020-25862 page https://www.suse.com/security/cve/CVE-2020-25863/ SUSE CVE CVE-2020-25863 page https://www.suse.com/security/cve/CVE-2020-25866/ SUSE CVE CVE-2020-25866 page https://www.suse.com/security/cve/CVE-2020-26418/ SUSE CVE CVE-2020-26418 page https://www.suse.com/security/cve/CVE-2020-26419/ SUSE CVE CVE-2020-26419 page https://www.suse.com/security/cve/CVE-2020-26420/ SUSE CVE CVE-2020-26420 page https://www.suse.com/security/cve/CVE-2020-26421/ SUSE CVE CVE-2020-26421 page https://www.suse.com/security/cve/CVE-2020-26422/ SUSE CVE CVE-2020-26422 page https://www.suse.com/security/cve/CVE-2020-26575/ SUSE CVE CVE-2020-26575 page https://www.suse.com/security/cve/CVE-2020-28030/ SUSE CVE CVE-2020-28030 page https://www.suse.com/security/cve/CVE-2020-7044/ SUSE CVE CVE-2020-7044 page https://www.suse.com/security/cve/CVE-2020-9428/ SUSE CVE CVE-2020-9428 page https://www.suse.com/security/cve/CVE-2020-9429/ SUSE CVE CVE-2020-9429 page https://www.suse.com/security/cve/CVE-2020-9430/ SUSE CVE CVE-2020-9430 page https://www.suse.com/security/cve/CVE-2020-9431/ SUSE CVE CVE-2020-9431 page https://www.suse.com/security/cve/CVE-2021-22173/ SUSE CVE CVE-2021-22173 page https://www.suse.com/security/cve/CVE-2021-22174/ SUSE CVE CVE-2021-22174 page https://www.suse.com/security/cve/CVE-2021-22191/ SUSE CVE CVE-2021-22191 page https://www.suse.com/security/cve/CVE-2021-22207/ SUSE CVE CVE-2021-22207 page https://www.suse.com/security/cve/CVE-2021-22235/ SUSE CVE CVE-2021-22235 page openSUSE Tumbleweed libwireshark14-3.4.8-1.2 libwiretap11-3.4.8-1.2 libwsutil12-3.4.8-1.2 wireshark-3.4.8-1.2 wireshark-devel-3.4.8-1.2 wireshark-ui-qt-3.4.8-1.2 libwireshark14-3.4.8-1.2 as a component of openSUSE Tumbleweed libwiretap11-3.4.8-1.2 as a component of openSUSE Tumbleweed libwsutil12-3.4.8-1.2 as a component of openSUSE Tumbleweed wireshark-3.4.8-1.2 as a component of openSUSE Tumbleweed wireshark-devel-3.4.8-1.2 as a component of openSUSE Tumbleweed wireshark-ui-qt-3.4.8-1.2 as a component of openSUSE Tumbleweed Off-by-one error in the OID printing routine in Ethereal 0.10.x up to 0.10.14 has unknown impact and remote attack vectors. CVE-2006-1932 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-1932.html CVE-2006-1932 https://bugzilla.suse.com/167928 SUSE Bug 167928 Off-by-one error in the MIME Multipart dissector in Wireshark (formerly Ethereal) 0.10.1 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger an assertion error related to unexpected length values. CVE-2006-4574 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-4574.html CVE-2006-4574 https://bugzilla.suse.com/213226 SUSE Bug 213226 epan/dissectors/packet-xot.c in the XOT dissector (dissect_xot_pdu) in Wireshark (formerly Ethereal) 0.9.8 through 0.99.3 allows remote attackers to cause a denial of service (memory consumption and crash) via an encoded XOT packet that produces a zero length value when it is decoded. CVE-2006-4805 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-4805.html CVE-2006-4805 https://bugzilla.suse.com/213226 SUSE Bug 213226 Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via unspecified vectors. CVE-2006-5468 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-5468.html CVE-2006-5468 https://bugzilla.suse.com/213226 SUSE Bug 213226 Unspecified vulnerability in the WBXML dissector in Wireshark (formerly Ethereal) 0.10.11 through 0.99.3 allows remote attackers to cause a denial of service (crash) via certain vectors that trigger a null dereference. CVE-2006-5469 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-5469.html CVE-2006-5469 https://bugzilla.suse.com/213226 SUSE Bug 213226 Unspecified vulnerability in the LDAP dissector in Wireshark (formerly Ethereal) 0.99.3 allows remote attackers to cause a denial of service (crash) via a crafted LDAP packet. CVE-2006-5740 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2006-5740.html CVE-2006-5740 https://bugzilla.suse.com/213226 SUSE Bug 213226 https://bugzilla.suse.com/374694 SUSE Bug 374694 Unspecified vulnerability in the LLT dissector in Wireshark (formerly Ethereal) 0.99.3 and 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors. CVE-2007-0456 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-0456.html CVE-2007-0456 https://bugzilla.suse.com/237246 SUSE Bug 237246 Unspecified vulnerability in the IEEE 802.11 dissector in Wireshark (formerly Ethereal) 0.10.14 through 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors. CVE-2007-0457 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-0457.html CVE-2007-0457 https://bugzilla.suse.com/237246 SUSE Bug 237246 Unspecified vulnerability in the HTTP dissector in Wireshark (formerly Ethereal) 0.99.3 and 0.99.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors, a different issue than CVE-2006-5468. CVE-2007-0458 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-0458.html CVE-2007-0458 https://bugzilla.suse.com/237246 SUSE Bug 237246 packet-tcp.c in the TCP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.4 allows remote attackers to cause a denial of service (application crash or hang) via fragmented HTTP packets. CVE-2007-0459 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-0459.html CVE-2007-0459 https://bugzilla.suse.com/237246 SUSE Bug 237246 In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by rejecting invalid Frame Control parameter values. CVE-2017-11406 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-11406.html CVE-2017-11406 https://bugzilla.suse.com/1049255 SUSE Bug 1049255 In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could crash. This was addressed in epan/dissectors/packet-mq.c by validating the fragment length before a reassembly attempt. CVE-2017-11407 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-11407.html CVE-2017-11407 https://bugzilla.suse.com/1049255 SUSE Bug 1049255 In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the AMQP dissector could crash. This was addressed in epan/dissectors/packet-amqp.c by checking for successful list dissection. CVE-2017-11408 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-11408.html CVE-2017-11408 https://bugzilla.suse.com/1049255 SUSE Bug 1049255 In Wireshark 2.4.0, the Modbus dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/packet-mbtcp.c by adding length validation. CVE-2017-13764 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-13764.html CVE-2017-13764 https://bugzilla.suse.com/1056250 SUSE Bug 1056250 In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the IrCOMM dissector has a buffer over-read and application crash. This was addressed in plugins/irda/packet-ircomm.c by adding length validation. CVE-2017-13765 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-13765.html CVE-2017-13765 https://bugzilla.suse.com/1056251 SUSE Bug 1056251 In Wireshark 2.4.0 and 2.2.0 to 2.2.8, the Profinet I/O dissector could crash with an out-of-bounds write. This was addressed in plugins/profinet/packet-dcerpc-pn-io.c by adding string validation. CVE-2017-13766 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-13766.html CVE-2017-13766 https://bugzilla.suse.com/1056249 SUSE Bug 1056249 In Wireshark 2.4.0, 2.2.0 to 2.2.8, and 2.0.0 to 2.0.14, the MSDP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-msdp.c by adding length validation. CVE-2017-13767 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-13767.html CVE-2017-13767 https://bugzilla.suse.com/1056248 SUSE Bug 1056248 In Wireshark 2.4.0 to 2.4.1, the DOCSIS dissector could go into an infinite loop. This was addressed in plugins/docsis/packet-docsis.c by adding decrements. CVE-2017-15189 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-15189.html CVE-2017-15189 https://bugzilla.suse.com/1062645 SUSE Bug 1062645 https://bugzilla.suse.com/983671 SUSE Bug 983671 In Wireshark 2.4.0 to 2.4.1, the RTSP dissector could crash. This was addressed in epan/dissectors/packet-rtsp.c by correcting the scope of a variable. CVE-2017-15190 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-15190.html CVE-2017-15190 https://bugzilla.suse.com/1062645 SUSE Bug 1062645 https://bugzilla.suse.com/983671 SUSE Bug 983671 In Wireshark 2.4.0 to 2.4.1, 2.2.0 to 2.2.9, and 2.0.0 to 2.0.15, the DMP dissector could crash. This was addressed in epan/dissectors/packet-dmp.c by validating a string length. CVE-2017-15191 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-15191.html CVE-2017-15191 https://bugzilla.suse.com/1062645 SUSE Bug 1062645 https://bugzilla.suse.com/983671 SUSE Bug 983671 In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the BT ATT dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by considering a case where not all of the BTATT packets have the same encapsulation level. CVE-2017-15192 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-15192.html CVE-2017-15192 https://bugzilla.suse.com/1062645 SUSE Bug 1062645 https://bugzilla.suse.com/983671 SUSE Bug 983671 In Wireshark 2.4.0 to 2.4.1 and 2.2.0 to 2.2.9, the MBIM dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-mbim.c by changing the memory-allocation approach. CVE-2017-15193 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-15193.html CVE-2017-15193 https://bugzilla.suse.com/1062645 SUSE Bug 1062645 https://bugzilla.suse.com/983671 SUSE Bug 983671 In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the NetBIOS dissector could crash. This was addressed in epan/dissectors/packet-netbios.c by ensuring that write operations are bounded by the beginning of a buffer. CVE-2017-17083 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-17083.html CVE-2017-17083 https://bugzilla.suse.com/1070727 SUSE Bug 1070727 In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the IWARP_MPA dissector could crash. This was addressed in epan/dissectors/packet-iwarp-mpa.c by validating a ULPDU length. CVE-2017-17084 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-17084.html CVE-2017-17084 https://bugzilla.suse.com/1070727 SUSE Bug 1070727 In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the CIP Safety dissector could crash. This was addressed in epan/dissectors/packet-cipsafety.c by validating the packet length. CVE-2017-17085 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-17085.html CVE-2017-17085 https://bugzilla.suse.com/1070727 SUSE Bug 1070727 In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-asterix.c by changing a data type to avoid an integer overflow. CVE-2017-5596 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5596.html CVE-2017-5596 https://bugzilla.suse.com/1021739 SUSE Bug 1021739 In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the DHCPv6 dissector could go into a large loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dhcpv6.c by changing a data type to avoid an integer overflow. CVE-2017-5597 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5597.html CVE-2017-5597 https://bugzilla.suse.com/1021739 SUSE Bug 1021739 Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. CVE-2017-5753 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 important 4.9 AV:L/AC:L/Au:N/C:C/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-5753.html CVE-2017-5753 https://bugzilla.suse.com/1068032 SUSE Bug 1068032 https://bugzilla.suse.com/1074562 SUSE Bug 1074562 https://bugzilla.suse.com/1074578 SUSE Bug 1074578 https://bugzilla.suse.com/1074701 SUSE Bug 1074701 https://bugzilla.suse.com/1075006 SUSE Bug 1075006 https://bugzilla.suse.com/1075419 SUSE Bug 1075419 https://bugzilla.suse.com/1075748 SUSE Bug 1075748 https://bugzilla.suse.com/1080039 SUSE Bug 1080039 https://bugzilla.suse.com/1087084 SUSE Bug 1087084 https://bugzilla.suse.com/1087939 SUSE Bug 1087939 https://bugzilla.suse.com/1089055 SUSE Bug 1089055 https://bugzilla.suse.com/1136865 SUSE Bug 1136865 https://bugzilla.suse.com/1178658 SUSE Bug 1178658 https://bugzilla.suse.com/1201877 SUSE Bug 1201877 https://bugzilla.suse.com/1209547 SUSE Bug 1209547 In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a Netscaler file parser infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by changing the restrictions on file size. CVE-2017-6467 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6467.html CVE-2017-6467 https://bugzilla.suse.com/1027998 SUSE Bug 1027998 https://bugzilla.suse.com/1148181 SUSE Bug 1148181 In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a NetScaler file parser crash, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by validating the relationship between pages and records. CVE-2017-6468 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6468.html CVE-2017-6468 https://bugzilla.suse.com/1027998 SUSE Bug 1027998 https://bugzilla.suse.com/1148182 SUSE Bug 1148182 In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an LDSS dissector crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-ldss.c by ensuring that memory is allocated for a certain data structure. CVE-2017-6469 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6469.html CVE-2017-6469 https://bugzilla.suse.com/1027998 SUSE Bug 1027998 https://bugzilla.suse.com/1148185 SUSE Bug 1148185 In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an IAX2 infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-iax2.c by constraining packet lateness. CVE-2017-6470 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6470.html CVE-2017-6470 https://bugzilla.suse.com/1027998 SUSE Bug 1027998 https://bugzilla.suse.com/1148186 SUSE Bug 1148186 In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a WSP infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by validating the capability length. CVE-2017-6471 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6471.html CVE-2017-6471 https://bugzilla.suse.com/1027998 SUSE Bug 1027998 https://bugzilla.suse.com/1148187 SUSE Bug 1148187 In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is an RTMPT dissector infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-rtmpt.c by properly incrementing a certain sequence value. CVE-2017-6472 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6472.html CVE-2017-6472 https://bugzilla.suse.com/1027998 SUSE Bug 1027998 https://bugzilla.suse.com/1148188 SUSE Bug 1148188 In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a K12 file parser crash, triggered by a malformed capture file. This was addressed in wiretap/k12.c by validating the relationships between lengths and offsets. CVE-2017-6473 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6473.html CVE-2017-6473 https://bugzilla.suse.com/1027998 SUSE Bug 1027998 https://bugzilla.suse.com/1148189 SUSE Bug 1148189 In Wireshark 2.2.0 to 2.2.4 and 2.0.0 to 2.0.10, there is a NetScaler file parser infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by validating record sizes. CVE-2017-6474 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-6474.html CVE-2017-6474 https://bugzilla.suse.com/1027998 SUSE Bug 1027998 https://bugzilla.suse.com/1148191 SUSE Bug 1148191 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by ensuring a nonzero record size. CVE-2017-7700 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7700.html CVE-2017-7700 https://bugzilla.suse.com/1033936 SUSE Bug 1033936 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-bgp.c by using a different integer data type. CVE-2017-7701 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7701.html CVE-2017-7701 https://bugzilla.suse.com/1033937 SUSE Bug 1033937 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding length validation. CVE-2017-7702 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7702.html CVE-2017-7702 https://bugzilla.suse.com/1033938 SUSE Bug 1033938 https://bugzilla.suse.com/1049255 SUSE Bug 1049255 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the IMAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-imap.c by calculating a line's end correctly. CVE-2017-7703 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7703.html CVE-2017-7703 https://bugzilla.suse.com/1033939 SUSE Bug 1033939 In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value. CVE-2017-7704 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7704.html CVE-2017-7704 https://bugzilla.suse.com/1033940 SUSE Bug 1033940 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-rpcrdma.c by correctly checking for going beyond the maximum offset. CVE-2017-7705 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7705.html CVE-2017-7705 https://bugzilla.suse.com/1033941 SUSE Bug 1033941 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SIGCOMP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-sigcomp.c by correcting a memory-size check. CVE-2017-7745 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7745.html CVE-2017-7745 https://bugzilla.suse.com/1033942 SUSE Bug 1033942 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SLSK dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-slsk.c by adding checks for the remaining length. CVE-2017-7746 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7746.html CVE-2017-7746 https://bugzilla.suse.com/1033943 SUSE Bug 1033943 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the PacketBB dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-packetbb.c by restricting additions to the protocol tree. CVE-2017-7747 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7747.html CVE-2017-7747 https://bugzilla.suse.com/1033944 SUSE Bug 1033944 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WSP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by adding a length check. CVE-2017-7748 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-7748.html CVE-2017-7748 https://bugzilla.suse.com/1033945 SUSE Bug 1033945 In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the MSNIP dissector misuses a NULL pointer. This was addressed in epan/dissectors/packet-msnip.c by validating an IPv4 address. CVE-2017-9343 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9343.html CVE-2017-9343 https://bugzilla.suse.com/1042309 SUSE Bug 1042309 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 https://bugzilla.suse.com/1042331 SUSE Bug 1042331 https://bugzilla.suse.com/1077080 SUSE Bug 1077080 In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth L2CAP dissector could divide by zero. This was addressed in epan/dissectors/packet-btl2cap.c by validating an interval value. CVE-2017-9344 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9344.html CVE-2017-9344 https://bugzilla.suse.com/1042298 SUSE Bug 1042298 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 https://bugzilla.suse.com/1042331 SUSE Bug 1042331 In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DNS dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-dns.c by trying to detect self-referencing pointers. CVE-2017-9345 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9345.html CVE-2017-9345 https://bugzilla.suse.com/1042300 SUSE Bug 1042300 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 https://bugzilla.suse.com/1042331 SUSE Bug 1042331 In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the SoulSeek dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-slsk.c by making loop bounds more explicit. CVE-2017-9346 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9346.html CVE-2017-9346 https://bugzilla.suse.com/1042301 SUSE Bug 1042301 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 https://bugzilla.suse.com/1042331 SUSE Bug 1042331 In Wireshark 2.2.0 to 2.2.6, the ROS dissector could crash with a NULL pointer dereference. This was addressed in epan/dissectors/asn1/ros/packet-ros-template.c by validating an OID. CVE-2017-9347 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9347.html CVE-2017-9347 https://bugzilla.suse.com/1042308 SUSE Bug 1042308 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 In Wireshark 2.2.0 to 2.2.6, the DOF dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-dof.c by validating a size value. CVE-2017-9348 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9348.html CVE-2017-9348 https://bugzilla.suse.com/1042303 SUSE Bug 1042303 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DICOM dissector has an infinite loop. This was addressed in epan/dissectors/packet-dcm.c by validating a length value. CVE-2017-9349 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9349.html CVE-2017-9349 https://bugzilla.suse.com/1042305 SUSE Bug 1042305 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 https://bugzilla.suse.com/1042331 SUSE Bug 1042331 In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the openSAFETY dissector could crash or exhaust system memory. This was addressed in epan/dissectors/packet-opensafety.c by checking for a negative length. CVE-2017-9350 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9350.html CVE-2017-9350 https://bugzilla.suse.com/1042299 SUSE Bug 1042299 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 https://bugzilla.suse.com/1042331 SUSE Bug 1042331 https://bugzilla.suse.com/1049255 SUSE Bug 1049255 https://bugzilla.suse.com/1049621 SUSE Bug 1049621 In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP dissector could read past the end of a buffer. This was addressed in epan/dissectors/packet-bootp.c by extracting the Vendor Class Identifier more carefully. CVE-2017-9351 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9351.html CVE-2017-9351 https://bugzilla.suse.com/1042302 SUSE Bug 1042302 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 https://bugzilla.suse.com/1042331 SUSE Bug 1042331 In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bazaar dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by ensuring that backwards parsing cannot occur. CVE-2017-9352 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 5.4 AV:N/AC:H/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9352.html CVE-2017-9352 https://bugzilla.suse.com/1042304 SUSE Bug 1042304 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 https://bugzilla.suse.com/1042331 SUSE Bug 1042331 In Wireshark 2.2.0 to 2.2.6, the IPv6 dissector could crash. This was addressed in epan/dissectors/packet-ipv6.c by validating an IPv6 address. CVE-2017-9353 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9353.html CVE-2017-9353 https://bugzilla.suse.com/1042306 SUSE Bug 1042306 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the RGMP dissector could crash. This was addressed in epan/dissectors/packet-rgmp.c by validating an IPv4 address. CVE-2017-9354 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-9354.html CVE-2017-9354 https://bugzilla.suse.com/1042307 SUSE Bug 1042307 https://bugzilla.suse.com/1042324 SUSE Bug 1042324 https://bugzilla.suse.com/1042330 SUSE Bug 1042330 https://bugzilla.suse.com/1042331 SUSE Bug 1042331 In Wireshark 2.6.0, the IEEE 1905.1a dissector could crash. This was addressed in epan/dissectors/packet-ieee1905.c by making a certain correction to string handling. CVE-2018-11354 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11354.html CVE-2018-11354 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, the RTCP dissector could crash. This was addressed in epan/dissectors/packet-rtcp.c by avoiding a buffer overflow for packet status chunks. CVE-2018-11355 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11355.html CVE-2018-11355 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the DNS dissector could crash. This was addressed in epan/dissectors/packet-dns.c by avoiding a NULL pointer dereference for an empty name in an SRV record. CVE-2018-11356 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11356.html CVE-2018-11356 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LTP dissector and other dissectors could consume excessive memory. This was addressed in epan/tvbuff.c by rejecting negative lengths. CVE-2018-11357 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11357.html CVE-2018-11357 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the Q.931 dissector could crash. This was addressed in epan/dissectors/packet-q931.c by avoiding a use-after-free after a malformed packet prevented certain cleanup. CVE-2018-11358 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11358.html CVE-2018-11358 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in epan/proto.c by avoiding a NULL pointer dereference. CVE-2018-11359 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11359.html CVE-2018-11359 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the GSM A DTAP dissector could crash. This was addressed in epan/dissectors/packet-gsm_a_dtap.c by fixing an off-by-one error that caused a buffer overflow. CVE-2018-11360 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11360.html CVE-2018-11360 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/dot11decrypt.c by avoiding a buffer overflow during FTE processing in Dot11DecryptTDLSDeriveKey. CVE-2018-11361 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11361.html CVE-2018-11361 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by avoiding a buffer over-read upon encountering a missing '\0' character. CVE-2018-11362 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-11362.html CVE-2018-11362 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 Buffer overflow in OPC UA applications allows remote attackers to trigger a stack overflow with carefully structured requests. CVE-2018-12086 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-12086.html CVE-2018-12086 https://bugzilla.suse.com/1111647 SUSE Bug 1111647 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the MMSE dissector could go into an infinite loop. This was addressed in epan/proto.c by adding offset and length validation. CVE-2018-14339 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14339.html CVE-2018-14339 https://bugzilla.suse.com/1101810 SUSE Bug 1101810 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read. CVE-2018-14340 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14340.html CVE-2018-14340 https://bugzilla.suse.com/1101804 SUSE Bug 1101804 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the DICOM dissector could go into a large or infinite loop. This was addressed in epan/dissectors/packet-dcm.c by preventing an offset overflow. CVE-2018-14341 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14341.html CVE-2018-14341 https://bugzilla.suse.com/1101776 SUSE Bug 1101776 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. This was addressed in epan/dissectors/packet-bgp.c by validating Path Attribute lengths. CVE-2018-14342 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14342.html CVE-2018-14342 https://bugzilla.suse.com/1101777 SUSE Bug 1101777 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ASN.1 BER dissector could crash. This was addressed in epan/dissectors/packet-ber.c by ensuring that length values do not exceed the maximum signed integer. CVE-2018-14343 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14343.html CVE-2018-14343 https://bugzilla.suse.com/1101786 SUSE Bug 1101786 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ISMP dissector could crash. This was addressed in epan/dissectors/packet-ismp.c by validating the IPX address length to avoid a buffer over-read. CVE-2018-14344 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14344.html CVE-2018-14344 https://bugzilla.suse.com/1101788 SUSE Bug 1101788 In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the CoAP protocol dissector could crash. This was addressed in epan/dissectors/packet-coap.c by properly checking for a NULL condition. CVE-2018-14367 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14367.html CVE-2018-14367 https://bugzilla.suse.com/1101791 SUSE Bug 1101791 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by properly handling items that are too long. CVE-2018-14368 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14368.html CVE-2018-14368 https://bugzilla.suse.com/1101794 SUSE Bug 1101794 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the HTTP2 dissector could crash. This was addressed in epan/dissectors/packet-http2.c by verifying that header data was found before proceeding to header decompression. CVE-2018-14369 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14369.html CVE-2018-14369 https://bugzilla.suse.com/1101800 SUSE Bug 1101800 In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/airpdcap.c via bounds checking that prevents a buffer over-read. CVE-2018-14370 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-14370.html CVE-2018-14370 https://bugzilla.suse.com/1101802 SUSE Bug 1101802 In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth Attribute Protocol dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by verifying that a dissector for a specific UUID exists. CVE-2018-16056 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16056.html CVE-2018-16056 https://bugzilla.suse.com/1106514 SUSE Bug 1106514 In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Radiotap dissector could crash. This was addressed in epan/dissectors/packet-ieee80211-radiotap-iter.c by validating iterator operations. CVE-2018-16057 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16057.html CVE-2018-16057 https://bugzilla.suse.com/1106514 SUSE Bug 1106514 In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth AVDTP dissector could crash. This was addressed in epan/dissectors/packet-btavdtp.c by properly initializing a data structure. CVE-2018-16058 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-16058.html CVE-2018-16058 https://bugzilla.suse.com/1106514 SUSE Bug 1106514 In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was addressed in epan/dissectors/packet-coap.c by ensuring that the piv length is correctly computed. CVE-2018-18225 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-18225.html CVE-2018-18225 https://bugzilla.suse.com/1111647 SUSE Bug 1111647 In Wireshark 2.6.0 to 2.6.3, the Steam IHS Discovery dissector could consume system memory. This was addressed in epan/dissectors/packet-steam-ihs-discovery.c by changing the memory-management approach. CVE-2018-18226 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-18226.html CVE-2018-18226 https://bugzilla.suse.com/1111647 SUSE Bug 1111647 In Wireshark 2.6.0 to 2.6.3 and 2.4.0 to 2.4.9, the MS-WSP protocol dissector could crash. This was addressed in epan/dissectors/packet-mswsp.c by properly handling NULL return values. CVE-2018-18227 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-18227.html CVE-2018-18227 https://bugzilla.suse.com/1111647 SUSE Bug 1111647 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows. CVE-2018-19622 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19622.html CVE-2018-19622 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values. CVE-2018-19623 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19623.html CVE-2018-19623 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference. CVE-2018-19624 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19624.html CVE-2018-19624 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read. CVE-2018-19625 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19625.html CVE-2018-19625 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination. CVE-2018-19626 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19626.html CVE-2018-19626 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary. CVE-2018-19627 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19627.html CVE-2018-19627 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error. CVE-2018-19628 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19628.html CVE-2018-19628 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by correcting the signature timestamp bounds checks. CVE-2018-5334 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-5334.html CVE-2018-5334 https://bugzilla.suse.com/1075737 SUSE Bug 1075737 In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the WCP dissector could crash. This was addressed in epan/dissectors/packet-wcp.c by validating the available buffer length. CVE-2018-5335 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-5335.html CVE-2018-5335 https://bugzilla.suse.com/1075738 SUSE Bug 1075738 In Wireshark 2.4.0 to 2.4.3 and 2.2.0 to 2.2.11, the JSON, XML, NTP, XMPP, and GDB dissectors could crash. This was addressed in epan/tvbparse.c by limiting the recursion depth. CVE-2018-5336 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-5336.html CVE-2018-5336 https://bugzilla.suse.com/1075739 SUSE Bug 1075739 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets. CVE-2018-7320 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7320.html CVE-2018-7320 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-thrift.c had a large loop that was addressed by not proceeding with dissection after encountering an unexpected type. CVE-2018-7321 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7321.html CVE-2018-7321 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpki-rtr.c had an infinite loop that was addressed by validating a length field. CVE-2018-7325 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7325.html CVE-2018-7325 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-s7comm.c had an infinite loop that was addressed by correcting off-by-one errors. CVE-2018-7329 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7329.html CVE-2018-7329 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpcrdma.c had an infinite loop that was addressed by validating a chunk size. CVE-2018-7333 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7333.html CVE-2018-7333 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the UMTS MAC dissector could crash. This was addressed in epan/dissectors/packet-umts_mac.c by rejecting a certain reserved value. CVE-2018-7334 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7334.html CVE-2018-7334 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the IEEE 802.11 dissector could crash. This was addressed in epan/crypt/airpdcap.c by rejecting lengths that are too small. CVE-2018-7335 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7335.html CVE-2018-7335 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the FCP protocol dissector could crash. This was addressed in epan/dissectors/packet-fcp.c by checking for a NULL pointer. CVE-2018-7336 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7336.html CVE-2018-7336 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.4.0 to 2.4.4, the DOCSIS protocol dissector could crash. This was addressed in plugins/docsis/packet-docsis.c by removing the recursive algorithm that had been used for concatenated PDUs. CVE-2018-7337 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7337.html CVE-2018-7337 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the IPMI dissector could crash. This was addressed in epan/dissectors/packet-ipmi-picmg.c by adding support for crafted packets that lack an IPMI header. CVE-2018-7417 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7417.html CVE-2018-7417 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the SIGCOMP dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by correcting the extraction of the length value. CVE-2018-7418 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7418.html CVE-2018-7418 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash. This was addressed in epan/dissectors/asn1/nbap/nbap.cnf by ensuring DCH ID initialization. CVE-2018-7419 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7419.html CVE-2018-7419 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser could crash. This was addressed in wiretap/pcapng.c by adding a block-size check for sysdig event blocks. CVE-2018-7420 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7420.html CVE-2018-7420 https://bugzilla.suse.com/1082692 SUSE Bug 1082692 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the LWAPP dissector could crash. This was addressed in epan/dissectors/packet-lwapp.c by limiting the encapsulation levels to restrict the recursion depth. CVE-2018-9256 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9256.html CVE-2018-9256 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5, the CQL dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-cql.c by checking for a nonzero number of columns. CVE-2018-9257 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9257.html CVE-2018-9257 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by preserving valid data sources. CVE-2018-9258 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9258.html CVE-2018-9258 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the IEEE 802.15.4 dissector could crash. This was addressed in epan/dissectors/packet-ieee802154.c by ensuring that an allocation step occurs. CVE-2018-9260 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9260.html CVE-2018-9260 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissector could crash with a large loop that ends with a heap-based buffer overflow. This was addressed in epan/dissectors/packet-nbap.c by prohibiting the self-linking of DCH-IDs. CVE-2018-9261 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9261.html CVE-2018-9261 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the VLAN dissector could crash. This was addressed in epan/dissectors/packet-vlan.c by limiting VLAN tag nesting to restrict the recursion depth. CVE-2018-9262 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9262.html CVE-2018-9262 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the Kerberos dissector could crash. This was addressed in epan/dissectors/packet-kerberos.c by ensuring a nonzero key length. CVE-2018-9263 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9263.html CVE-2018-9263 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the ADB dissector could crash with a heap-based buffer overflow. This was addressed in epan/dissectors/packet-adb.c by checking for a length inconsistency. CVE-2018-9264 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9264.html CVE-2018-9264 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-tn3270.c has a memory leak. CVE-2018-9265 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9265.html CVE-2018-9265 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-giop.c has a memory leak. CVE-2018-9269 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9269.html CVE-2018-9269 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, epan/dissectors/packet-pcp.c has a memory leak. CVE-2018-9273 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-9273.html CVE-2018-9273 https://bugzilla.suse.com/1088200 SUSE Bug 1088200 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called. CVE-2019-10894 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10894.html CVE-2019-10894 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation. CVE-2019-10895 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10895.html CVE-2019-10895 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DOF dissector could crash. This was addressed in epan/dissectors/packet-dof.c by properly handling generated IID and OID bytes. CVE-2019-10896 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10896.html CVE-2019-10896 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 3.0.0, the IEEE 802.11 dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-ieee80211.c by detecting cases in which the bit offset does not advance. CVE-2019-10897 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10897.html CVE-2019-10897 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 In Wireshark 3.0.0, the GSUP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gsm_gsup.c by rejecting an invalid Information Element length. CVE-2019-10898 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10898.html CVE-2019-10898 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC dissector could crash. This was addressed in epan/dissectors/packet-srvloc.c by preventing a heap-based buffer under-read. CVE-2019-10899 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10899.html CVE-2019-10899 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 3.0.0, the Rbm dissector could go into an infinite loop. This was addressed in epan/dissectors/file-rbm.c by handling unknown object types safely. CVE-2019-10900 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10900.html CVE-2019-10900 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly. CVE-2019-10901 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10901.html CVE-2019-10901 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 3.0.0, the TSDNS dissector could crash. This was addressed in epan/dissectors/packet-tsdns.c by splitting strings safely. CVE-2019-10902 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10902.html CVE-2019-10902 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was addressed in epan/dissectors/packet-dcerpc-spoolss.c by adding a boundary check. CVE-2019-10903 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-10903.html CVE-2019-10903 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer increments. CVE-2019-13619 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-13619.html CVE-2019-13619 https://bugzilla.suse.com/1141980 SUSE Bug 1141980 In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugins/epan/gryphon/packet-gryphon.c by checking for a message length of zero. CVE-2019-16319 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-16319.html CVE-2019-16319 https://bugzilla.suse.com/1150690 SUSE Bug 1150690 In Wireshark 3.0.0 to 3.0.6 and 2.6.0 to 2.6.12, the CMS dissector could crash. This was addressed in epan/dissectors/asn1/cms/packet-cms-template.c by ensuring that an object identifier is set to NULL after a ContentInfo dissection. CVE-2019-19553 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-19553.html CVE-2019-19553 https://bugzilla.suse.com/1158505 SUSE Bug 1158505 In Wireshark 2.6.0 to 2.6.5, the 6LoWPAN dissector could crash. This was addressed in epan/dissectors/packet-6lowpan.c by avoiding use of a TVB before its creation. CVE-2019-5716 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-5716.html CVE-2019-5716 https://bugzilla.suse.com/1121231 SUSE Bug 1121231 In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the P_MUL dissector could crash. This was addressed in epan/dissectors/packet-p_mul.c by rejecting the invalid sequence number of zero. CVE-2019-5717 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-5717.html CVE-2019-5717 https://bugzilla.suse.com/1121232 SUSE Bug 1121232 In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in epan/charsets.c by adding a get_t61_string length check. CVE-2019-5718 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-5718.html CVE-2019-5718 https://bugzilla.suse.com/1121233 SUSE Bug 1121233 In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was addressed in epan/dissectors/packet-isakmp.c by properly handling the case of a missing decryption data block. CVE-2019-5719 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-5719.html CVE-2019-5719 https://bugzilla.suse.com/1121234 SUSE Bug 1121234 In Wireshark 2.4.0 to 2.4.11, the ENIP dissector could crash. This was addressed in epan/dissectors/packet-enip.c by changing the memory-management approach so that a use-after-free is avoided. CVE-2019-5721 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-5721.html CVE-2019-5721 https://bugzilla.suse.com/1121235 SUSE Bug 1121235 In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash. This was addressed in epan/dissectors/asn1/tcap/tcap.cnf by avoiding NULL pointer dereferences. CVE-2019-9208 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-9208.html CVE-2019-9208 https://bugzilla.suse.com/1127370 SUSE Bug 1127370 In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash. This was addressed in epan/dissectors/packet-ber.c by preventing a buffer overflow associated with excessive digits in time values. CVE-2019-9209 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-9209.html CVE-2019-9209 https://bugzilla.suse.com/1127369 SUSE Bug 1127369 In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the RPCAP dissector could crash. This was addressed in epan/dissectors/packet-rpcap.c by avoiding an attempted dereference of a NULL conversation. CVE-2019-9214 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-9214.html CVE-2019-9214 https://bugzilla.suse.com/1127367 SUSE Bug 1127367 In Wireshark 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the BACapp dissector could crash. This was addressed in epan/dissectors/packet-bacapp.c by limiting the amount of recursion. CVE-2020-11647 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-11647.html CVE-2020-11647 https://bugzilla.suse.com/1169063 SUSE Bug 1169063 In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the NFS dissector could crash. This was addressed in epan/dissectors/packet-nfs.c by preventing excessive recursion, such as for a cycle in the directory graph on a filesystem. CVE-2020-13164 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-13164.html CVE-2020-13164 https://bugzilla.suse.com/1171899 SUSE Bug 1171899 In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gvcp.c by ensuring that an offset increases in all situations. CVE-2020-15466 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-15466.html CVE-2020-15466 https://bugzilla.suse.com/1173606 SUSE Bug 1173606 In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. This was addressed in epan/dissectors/packet-kafka.c by avoiding a double free during LZ4 decompression. CVE-2020-17498 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-17498.html CVE-2020-17498 https://bugzilla.suse.com/1175204 SUSE Bug 1175204 In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the TCP dissector could crash. This was addressed in epan/dissectors/packet-tcp.c by changing the handling of the invalid 0xFFFF checksum. CVE-2020-25862 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-25862.html CVE-2020-25862 https://bugzilla.suse.com/1176909 SUSE Bug 1176909 In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the MIME Multipart dissector could crash. This was addressed in epan/dissectors/packet-multipart.c by correcting the deallocation of invalid MIME parts. CVE-2020-25863 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-25863.html CVE-2020-25863 https://bugzilla.suse.com/1176908 SUSE Bug 1176908 In Wireshark 3.2.0 to 3.2.6 and 3.0.0 to 3.0.13, the BLIP protocol dissector has a NULL pointer dereference because a buffer was sized for compressed (not uncompressed) messages. This was addressed in epan/dissectors/packet-blip.c by allowing reasonable compression ratios and rejecting ZIP bombs. CVE-2020-25866 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-25866.html CVE-2020-25866 https://bugzilla.suse.com/1176910 SUSE Bug 1176910 Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file. CVE-2020-26418 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-26418.html CVE-2020-26418 https://bugzilla.suse.com/1179930 SUSE Bug 1179930 Memory leak in the dissection engine in Wireshark 3.4.0 allows denial of service via packet injection or crafted capture file. CVE-2020-26419 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-26419.html CVE-2020-26419 https://bugzilla.suse.com/1179931 SUSE Bug 1179931 Memory leak in RTPS protocol dissector in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file. CVE-2020-26420 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-26420.html CVE-2020-26420 https://bugzilla.suse.com/1179932 SUSE Bug 1179932 Crash in USB HID protocol dissector and possibly other dissectors in Wireshark 3.4.0 and 3.2.0 to 3.2.8 allows denial of service via packet injection or crafted capture file. CVE-2020-26421 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-26421.html CVE-2020-26421 https://bugzilla.suse.com/1179933 SUSE Bug 1179933 Buffer overflow in QUIC dissector in Wireshark 3.4.0 to 3.4.1 allows denial of service via packet injection or crafted capture file CVE-2020-26422 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-26422.html CVE-2020-26422 https://bugzilla.suse.com/1180232 SUSE Bug 1180232 In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop. This was addressed in epan/dissectors/packet-fbzero.c by correcting the implementation of offset advancement. CVE-2020-26575 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-26575.html CVE-2020-26575 https://bugzilla.suse.com/1177406 SUSE Bug 1177406 https://bugzilla.suse.com/1178290 SUSE Bug 1178290 In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was addressed in epan/dissectors/packet-gquic.c by correcting the implementation of offset advancement. CVE-2020-28030 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-28030.html CVE-2020-28030 https://bugzilla.suse.com/1178291 SUSE Bug 1178291 In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >= and <= to resolve off-by-one errors. CVE-2020-7044 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-7044.html CVE-2020-7044 https://bugzilla.suse.com/1161052 SUSE Bug 1161052 In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the EAP dissector could crash. This was addressed in epan/dissectors/packet-eap.c by using more careful sscanf parsing. CVE-2020-9428 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-9428.html CVE-2020-9428 https://bugzilla.suse.com/1165241 SUSE Bug 1165241 In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addressed in epan/dissectors/packet-wireguard.c by handling the situation where a certain data structure intentionally has a NULL value. CVE-2020-9429 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-9429.html CVE-2020-9429 https://bugzilla.suse.com/1165241 SUSE Bug 1165241 In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the WiMax DLMAP dissector could crash. This was addressed in plugins/epan/wimax/msg_dlmap.c by validating a length field. CVE-2020-9430 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-9430.html CVE-2020-9430 https://bugzilla.suse.com/1165241 SUSE Bug 1165241 In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could leak memory. This was addressed in epan/dissectors/packet-lte-rrc.c by adjusting certain append operations. CVE-2020-9431 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-9431.html CVE-2020-9431 https://bugzilla.suse.com/1165241 SUSE Bug 1165241 Memory leak in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file CVE-2021-22173 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-22173.html CVE-2021-22173 https://bugzilla.suse.com/1181598 SUSE Bug 1181598 Crash in USB HID dissector in Wireshark 3.4.0 to 3.4.2 allows denial of service via packet injection or crafted capture file CVE-2021-22174 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-22174.html CVE-2021-22174 https://bugzilla.suse.com/1181599 SUSE Bug 1181599 Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via via packet injection or crafted capture file. CVE-2021-22191 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-22191.html CVE-2021-22191 https://bugzilla.suse.com/1183353 SUSE Bug 1183353 Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12 allows denial of service via packet injection or crafted capture file CVE-2021-22207 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-22207.html CVE-2021-22207 https://bugzilla.suse.com/1185128 SUSE Bug 1185128 Crash in DNP dissector in Wireshark 3.4.0 to 3.4.6 and 3.2.0 to 3.2.14 allows denial of service via packet injection or crafted capture file CVE-2021-22235 openSUSE Tumbleweed:libwireshark14-3.4.8-1.2 openSUSE Tumbleweed:libwiretap11-3.4.8-1.2 openSUSE Tumbleweed:libwsutil12-3.4.8-1.2 openSUSE Tumbleweed:wireshark-3.4.8-1.2 openSUSE Tumbleweed:wireshark-devel-3.4.8-1.2 openSUSE Tumbleweed:wireshark-ui-qt-3.4.8-1.2 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2021-22235.html CVE-2021-22235 https://bugzilla.suse.com/1188375 SUSE Bug 1188375