Описание
Security update for wireshark
wireshark was updated to version 1.12.13 to fix the following issues:
-
CVE-2016-6504: wireshark: NDS dissector crash (bnc#991012)
-
CVE-2016-6505: wireshark: PacketBB dissector could divide by zero (bnc#991013)
-
CVE-2016-6506: wireshark: WSP infinite loop (bnc#991015)
-
CVE-2016-6507: wireshark: MMSE infinite loop (bnc#991016)
-
CVE-2016-6508: wireshark: RLC long loop (bnc#991017)
-
CVE-2016-6509: wireshark: LDSS dissector crash (bnc#991018)
-
CVE-2016-6510: wireshark: RLC dissector crash (bnc#991019)
-
CVE-2016-6511: wireshark: OpenFlow long loop (bnc991020)
-
CVE-2016-5350: SPOOLS infinite loop (bsc#983671).
-
CVE-2016-5351: IEEE 802.11 dissector crash (bsc#983671).
-
CVE-2016-5352: IEEE 802.11 dissector crash, different from wpna-sec-2016-30 (bsc#983671).
-
CVE-2016-5353: UMTS FP crash (bsc#983671).
-
CVE-2016-5354: USB dissector crash (bsc#983671).
-
CVE-2016-5355: Toshiba file parser crash (bsc#983671).
-
CVE-2016-5356: CoSine file parser crash (bsc#983671).
-
CVE-2016-5357: NetScreen file parser crash (bsc#983671).
-
CVE-2016-5358: Ethernet dissector crash (bsc#983671).
-
CVE-2016-5359: WBXML infinite loop (bsc#983671).
For more details please see: https://www.wireshark.org/docs/relnotes/wireshark-1.12.12.html https://www.wireshark.org/docs/relnotes/wireshark-1.12.13.html
Список пакетов
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP1
Ссылки
- Link for SUSE-SU-2016:2453-1
- E-Mail link for SUSE-SU-2016:2453-1
- SUSE Security Ratings
- SUSE Bug 983671
- SUSE Bug 991012
- SUSE Bug 991013
- SUSE Bug 991015
- SUSE Bug 991016
- SUSE Bug 991017
- SUSE Bug 991018
- SUSE Bug 991019
- SUSE Bug 991020
- SUSE CVE CVE-2016-5350 page
- SUSE CVE CVE-2016-5351 page
- SUSE CVE CVE-2016-5352 page
- SUSE CVE CVE-2016-5353 page
- SUSE CVE CVE-2016-5354 page
- SUSE CVE CVE-2016-5355 page
- SUSE CVE CVE-2016-5356 page
- SUSE CVE CVE-2016-5357 page
Описание
epan/dissectors/packet-dcerpc-spoolss.c in the SPOOLS component in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles unexpected offsets, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-5350
- SUSE Bug 983671
Описание
epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles the lack of an EAPOL_RSN_KEY, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-5351
- SUSE Bug 983671
Описание
epan/crypt/airpdcap.c in the IEEE 802.11 dissector in Wireshark 2.x before 2.0.4 mishandles certain length values, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-5352
- SUSE Bug 983671
Описание
epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles the reserved C/T value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-5353
- SUSE Bug 983671
Описание
The USB subsystem in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles class types, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-5354
- SUSE Bug 983671
Описание
wiretap/toshiba.c in the Toshiba file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2016-5355
- SUSE Bug 983671
Описание
wiretap/cosine.c in the CoSine file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2016-5356
- SUSE Bug 983671
Описание
wiretap/netscreen.c in the NetScreen file parser in Wireshark 1.12.x before 1.12.12 and 2.x before 2.0.4 mishandles sscanf unsigned-integer processing, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
Затронутые продукты
Ссылки
- CVE-2016-5357
- SUSE Bug 983671
Описание
epan/dissectors/packet-pktap.c in the Ethernet dissector in Wireshark 2.x before 2.0.4 mishandles the packet-header data type, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-5358
- SUSE Bug 983671
Описание
epan/dissectors/packet-wbxml.c in the WBXML dissector in Wireshark 1.12.x before 1.12.12 mishandles offsets, which allows remote attackers to cause a denial of service (integer overflow and infinite loop) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-5359
- SUSE Bug 983671
Описание
epan/dissectors/packet-ncp2222.inc in the NDS dissector in Wireshark 1.12.x before 1.12.13 does not properly maintain a ptvc data structure, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-6504
- SUSE Bug 991012
Описание
epan/dissectors/packet-packetbb.c in the PacketBB dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-6505
- SUSE Bug 991013
Описание
epan/dissectors/packet-wsp.c in the WSP dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-6506
- SUSE Bug 991015
Описание
epan/dissectors/packet-mmse.c in the MMSE dissector in Wireshark 1.12.x before 1.12.13 allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-6507
- SUSE Bug 991016
Описание
epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 uses an incorrect integer data type, which allows remote attackers to cause a denial of service (large loop) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-6508
- SUSE Bug 991017
Описание
epan/dissectors/packet-ldss.c in the LDSS dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 mishandles conversations, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-6509
- SUSE Bug 991018
Описание
Off-by-one error in epan/dissectors/packet-rlc.c in the RLC dissector in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-6510
- SUSE Bug 991019
Описание
epan/proto.c in Wireshark 1.12.x before 1.12.13 and 2.x before 2.0.5 allows remote attackers to cause a denial of service (OpenFlow dissector large loop) via a crafted packet.
Затронутые продукты
Ссылки
- CVE-2016-6511
- SUSE Bug 991020