Описание
Security update for wireshark
This update for wireshark fixes the following issues:
- Wireshark update to v3.6.16.
- CVE-2023-4512: Fixed a bug in CBOR dissector which could lead to crash. (bsc#1214561)
- CVE-2023-4511: Fixed a bug in BT SDP dissector which could lead to an infinite loop. (bsc#1214560)
- CVE-2023-4513: Fixed a bug in BT SDP dissector which could lead to a memory leak. (bsc#1214562)
- CVE-2023-2906: Fixed a bug in CP2179 dissector which could lead to crash. (bsc#1214652)
Список пакетов
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-VLI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP4-SAP-Azure-LI-BYOS
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP4-SAP-Azure-LI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP4
wireshark-devel-3.6.16-150000.3.100.1
wireshark-ui-qt-3.6.16-150000.3.100.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP5
wireshark-devel-3.6.16-150000.3.100.1
wireshark-ui-qt-3.6.16-150000.3.100.1
SUSE Manager Proxy 4.2
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
SUSE Manager Server 4.2
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
openSUSE Leap 15.4
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
wireshark-devel-3.6.16-150000.3.100.1
wireshark-ui-qt-3.6.16-150000.3.100.1
openSUSE Leap 15.5
libwireshark15-3.6.16-150000.3.100.1
libwiretap12-3.6.16-150000.3.100.1
libwsutil13-3.6.16-150000.3.100.1
wireshark-3.6.16-150000.3.100.1
wireshark-devel-3.6.16-150000.3.100.1
wireshark-ui-qt-3.6.16-150000.3.100.1
Ссылки
- Link for SUSE-SU-2023:3778-1
- E-Mail link for SUSE-SU-2023:3778-1
- SUSE Security Ratings
- SUSE Bug 1214560
- SUSE Bug 1214561
- SUSE Bug 1214562
- SUSE Bug 1214652
- SUSE CVE CVE-2023-2906 page
- SUSE CVE CVE-2023-4511 page
- SUSE CVE CVE-2023-4512 page
- SUSE CVE CVE-2023-4513 page
Описание
Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack.
Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwireshark15-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwiretap12-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwsutil13-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:wireshark-3.6.16-150000.3.100.1
Ссылки
- CVE-2023-2906
- SUSE Bug 1214652
Описание
BT SDP dissector infinite loop in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwireshark15-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwiretap12-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwsutil13-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:wireshark-3.6.16-150000.3.100.1
Ссылки
- CVE-2023-4511
- SUSE Bug 1214560
Описание
CBOR dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwireshark15-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwiretap12-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwsutil13-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:wireshark-3.6.16-150000.3.100.1
Ссылки
- CVE-2023-4512
- SUSE Bug 1214561
Описание
BT SDP dissector memory leak in Wireshark 4.0.0 to 4.0.7 and 3.6.0 to 3.6.15 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwireshark15-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwiretap12-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:libwsutil13-3.6.16-150000.3.100.1
Image SLES15-SP1-SAP-Azure-LI-BYOS-Production:wireshark-3.6.16-150000.3.100.1
Ссылки
- CVE-2023-4513
- SUSE Bug 1214562