SUSE-SU-2024:0058-1

Опубликовано: 08 янв. 2024

Источник: suse-cvrf

Описание

Security update for wireshark

This update for wireshark fixes the following issues:

Updated to Wireshark 3.6.20:
- CVE-2024-0208: Fixed a crash in the GVCP dissector (bsc#1218504).
- CVE-2024-0209: Fixed a crash in the IEEE 1609.2 dissector (bsc#1218505).

Список пакетов

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP4-SAP-Azure-LI-BYOS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP5-SAP-Azure-LI-BYOS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

SUSE Enterprise Storage 7.1

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Module for Basesystem 15 SP5

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

SUSE Linux Enterprise Module for Desktop Applications 15 SP5

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Real Time 15 SP4

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Server 15 SP1-LTSS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Server 15 SP2-LTSS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Server 15 SP3-LTSS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Server 15 SP4-LTSS

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Server for SAP Applications 15 SP1

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Server for SAP Applications 15 SP3

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Linux Enterprise Server for SAP Applications 15 SP4

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

SUSE Manager Proxy 4.3

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

SUSE Manager Server 4.3

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

openSUSE Leap 15.5

libwireshark15-3.6.20-150000.3.109.1

libwiretap12-3.6.20-150000.3.109.1

libwsutil13-3.6.20-150000.3.109.1

wireshark-3.6.20-150000.3.109.1

wireshark-devel-3.6.20-150000.3.109.1

wireshark-ui-qt-3.6.20-150000.3.109.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20240058-1/
Link for SUSE-SU-2024:0058-1
https://lists.suse.com/pipermail/sle-security-updates/2024-January/017595.html
E-Mail link for SUSE-SU-2024:0058-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1218504
SUSE Bug 1218504
https://bugzilla.suse.com/1218505
SUSE Bug 1218505
https://www.suse.com/security/cve/CVE-2024-0208/
SUSE CVE CVE-2024-0208 page
https://www.suse.com/security/cve/CVE-2024-0209/
SUSE CVE CVE-2024-0209 page

Описание

GVCP dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file

Затронутые продукты

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:libwireshark15-3.6.20-150000.3.109.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:libwiretap12-3.6.20-150000.3.109.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:libwsutil13-3.6.20-150000.3.109.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:wireshark-3.6.20-150000.3.109.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-0208.html
CVE-2024-0208
https://bugzilla.suse.com/1218504
SUSE Bug 1218504

Описание

IEEE 1609.2 dissector crash in Wireshark 4.2.0, 4.0.0 to 4.0.11, and 3.6.0 to 3.6.19 allows denial of service via packet injection or crafted capture file

Затронутые продукты

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:libwireshark15-3.6.20-150000.3.109.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:libwiretap12-3.6.20-150000.3.109.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:libwsutil13-3.6.20-150000.3.109.1

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production:wireshark-3.6.20-150000.3.109.1

Ссылки

https://www.suse.com/security/cve/CVE-2024-0209.html
CVE-2024-0209
https://bugzilla.suse.com/1218505
SUSE Bug 1218505

SUSE-SU-2024:0058-1

Описание

Список пакетов

Image SLES15-SP2-SAP-Azure-LI-BYOS-Production

Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP3-SAP-Azure-LI-BYOS-Production

Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP4-SAP-Azure-LI-BYOS

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

Image SLES15-SP4-SAP-Azure-VLI-BYOS

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

Image SLES15-SP5-SAP-Azure-LI-BYOS

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

Image SLES15-SP5-SAP-Azure-VLI-BYOS

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

SUSE Enterprise Storage 7.1

SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS

SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS

SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS

SUSE Linux Enterprise Module for Basesystem 15 SP5

SUSE Linux Enterprise Module for Desktop Applications 15 SP5

SUSE Linux Enterprise Real Time 15 SP4

SUSE Linux Enterprise Server 15 SP1-LTSS

SUSE Linux Enterprise Server 15 SP2-LTSS

SUSE Linux Enterprise Server 15 SP3-LTSS

SUSE Linux Enterprise Server 15 SP4-LTSS

SUSE Linux Enterprise Server for SAP Applications 15 SP1

SUSE Linux Enterprise Server for SAP Applications 15 SP2

SUSE Linux Enterprise Server for SAP Applications 15 SP3

SUSE Linux Enterprise Server for SAP Applications 15 SP4

SUSE Manager Proxy 4.3

SUSE Manager Server 4.3

openSUSE Leap 15.5

Ссылки

Уязвимость: CVE-2024-0208

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2024-0209

Описание

Затронутые продукты

Ссылки