{"affected":[{"ecosystem_specific":{"binaries":[{"wireshark":"1.12.7-0.5.3"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 11 SP3","name":"wireshark","purl":"pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.12.7-0.5.3"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"wireshark":"1.12.7-0.5.3"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Desktop 11 SP4","name":"wireshark","purl":"pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Desktop%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.12.7-0.5.3"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"\nWireshark has been updated to 1.12.7. (FATE#319388)\n\nThe following vulnerabilities have been fixed:\n* Wireshark could crash when adding an item to the protocol tree. wnpa-sec-2015-21 CVE-2015-6241\n* Wireshark could attempt to free invalid memory. wnpa-sec-2015-22 CVE-2015-6242\n* Wireshark could crash when searching for a protocol dissector. wnpa-sec-2015-23 CVE-2015-6243\n* The ZigBee dissector could crash. wnpa-sec-2015-24 CVE-2015-6244\n* The GSM RLC/MAC dissector could go into an infinite loop. wnpa-sec-2015-25 CVE-2015-6245\n* The WaveAgent dissector could crash. wnpa-sec-2015-26 CVE-2015-6246\n* The OpenFlow dissector could go into an infinite loop. wnpa-sec-2015-27 CVE-2015-6247\n* Wireshark could crash due to invalid ptvcursor length checking. wnpa-sec-2015-28 CVE-2015-6248\n* The WCCP dissector could crash. wnpa-sec-2015-29 CVE-2015-6249\n* Further bug fixes and updated protocol support as listed in:\n    https://www.wireshark.org/docs/relnotes/wireshark-1.12.7.html \n\nAlso a fix from 1.12.6 in GSM DTAP was backported. (bnc#935158 CVE-2015-4652)\n","id":"SUSE-SU-2015:1676-2","modified":"2015-09-16T11:51:35Z","published":"2015-09-16T11:51:35Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2015/suse-su-20151676-2/"},{"type":"REPORT","url":"https://bugzilla.suse.com/935158"},{"type":"REPORT","url":"https://bugzilla.suse.com/941500"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-3813"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-4652"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-6241"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-6242"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-6243"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-6244"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-6245"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-6246"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-6247"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-6248"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-6249"}],"related":["CVE-2015-3813","CVE-2015-4652","CVE-2015-6241","CVE-2015-6242","CVE-2015-6243","CVE-2015-6244","CVE-2015-6245","CVE-2015-6246","CVE-2015-6247","CVE-2015-6248","CVE-2015-6249"],"summary":"Security update for wireshark","upstream":["CVE-2015-3813","CVE-2015-4652","CVE-2015-6241","CVE-2015-6242","CVE-2015-6243","CVE-2015-6244","CVE-2015-6245","CVE-2015-6246","CVE-2015-6247","CVE-2015-6248","CVE-2015-6249"]}