SUSE-SU-2024:3210-1

Опубликовано: 11 сент. 2024

Источник: suse-cvrf

Описание

Security update for libpcap

This update for libpcap fixes the following issues:

CVE-2024-8006: NULL pointer dereference in function pcap_findalldevs_ex(). (bsc#1230034)
CVE-2023-7256: double free via struct addrinfo in function sock_initaddress(). (bsc#1230020)

Список пакетов

Container suse/sle-micro/5.3/toolbox:latest

libpcap1-1.10.1-150400.3.3.2

Container suse/sle-micro/5.4/toolbox:latest

libpcap1-1.10.1-150400.3.3.2

Container suse/sle-micro/5.5/toolbox:latest

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-CHOST-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-CHOST-BYOS-Aliyun

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-CHOST-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-CHOST-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-CHOST-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-HPC-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-HPC-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-HPC-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-HPC-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-HPC-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-HPC-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Hardened-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Hardened-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Hardened-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Hardened-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Proxy-4-3-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Server-4-3

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Server-4-3-Azure-llc

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Server-4-3-Azure-ltd

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Server-4-3-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Server-4-3-EC2-llc

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-Manager-Server-4-3-EC2-ltd

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Azure-LI-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Azure-VLI-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Hardened

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Hardened-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Hardened-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Hardened-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Hardened-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Hardened-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAP-Hardened-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAPCAL

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAPCAL-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAPCAL-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-SAPCAL-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-Azure-3P

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-Azure-Basic

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-Azure-Standard

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-CHOST-BYOS-Aliyun

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-CHOST-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-CHOST-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-CHOST-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-CHOST-BYOS-GDC

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-CHOST-BYOS-SAP-CCloud

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-HPC-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-HPC-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-HPC-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-HPC-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-Hardened-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-Hardened-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-Hardened-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Azure-3P

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Azure-LI-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Azure-VLI-BYOS

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Hardened-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Hardened-BYOS-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Hardened-BYOS-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Hardened-BYOS-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAP-Hardened-GCE

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAPCAL-Azure

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAPCAL-EC2

libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP5-SAPCAL-GCE

libpcap1-1.10.1-150400.3.3.2

SUSE Linux Enterprise Micro 5.3

libpcap1-1.10.1-150400.3.3.2

SUSE Linux Enterprise Micro 5.4

libpcap1-1.10.1-150400.3.3.2

SUSE Linux Enterprise Micro 5.5

libpcap1-1.10.1-150400.3.3.2

SUSE Linux Enterprise Module for Basesystem 15 SP5

libpcap-devel-1.10.1-150400.3.3.2

libpcap1-1.10.1-150400.3.3.2

SUSE Linux Enterprise Module for Package Hub 15 SP5

libpcap1-32bit-1.10.1-150400.3.3.2

openSUSE Leap 15.5

libpcap-devel-1.10.1-150400.3.3.2

libpcap-devel-32bit-1.10.1-150400.3.3.2

libpcap-devel-static-1.10.1-150400.3.3.2

libpcap1-1.10.1-150400.3.3.2

libpcap1-32bit-1.10.1-150400.3.3.2

openSUSE Leap Micro 5.5

libpcap1-1.10.1-150400.3.3.2

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20243210-1/
Link for SUSE-SU-2024:3210-1
https://lists.suse.com/pipermail/sle-updates/2024-September/036856.html
E-Mail link for SUSE-SU-2024:3210-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1230020
SUSE Bug 1230020
https://bugzilla.suse.com/1230034
SUSE Bug 1230034
https://www.suse.com/security/cve/CVE-2023-7256/
SUSE CVE CVE-2023-7256 page
https://www.suse.com/security/cve/CVE-2024-8006/
SUSE CVE CVE-2024-8006 page

Описание

In affected libpcap versions during the setup of a remote packet capture the internal function sock_initaddress() calls getaddrinfo() and possibly freeaddrinfo(), but does not clearly indicate to the caller function whether freeaddrinfo() still remains to be called after the function returns. This makes it possible in some scenarios that both the function and its caller call freeaddrinfo() for the same allocated memory block. A similar problem was reported in Apple libpcap, to which Apple assigned CVE-2023-40400.

Затронутые продукты

Container suse/sle-micro/5.3/toolbox:latest:libpcap1-1.10.1-150400.3.3.2

Container suse/sle-micro/5.4/toolbox:latest:libpcap1-1.10.1-150400.3.3.2

Container suse/sle-micro/5.5/toolbox:latest:libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-BYOS-Azure:libpcap1-1.10.1-150400.3.3.2

Ссылки

https://www.suse.com/security/cve/CVE-2023-7256.html
CVE-2023-7256
https://bugzilla.suse.com/1230020
SUSE Bug 1230020

Описание

Remote packet capture support is disabled by default in libpcap. When a user builds libpcap with remote packet capture support enabled, one of the functions that become available is pcap_findalldevs_ex(). One of the function arguments can be a filesystem path, which normally means a directory with input data files. When the specified path cannot be used as a directory, the function receives NULL from opendir(), but does not check the return value and passes the NULL value to readdir(), which causes a NULL pointer derefence.

Затронутые продукты

Container suse/sle-micro/5.3/toolbox:latest:libpcap1-1.10.1-150400.3.3.2

Container suse/sle-micro/5.4/toolbox:latest:libpcap1-1.10.1-150400.3.3.2

Container suse/sle-micro/5.5/toolbox:latest:libpcap1-1.10.1-150400.3.3.2

Image SLES15-SP4-BYOS-Azure:libpcap1-1.10.1-150400.3.3.2

Ссылки

https://www.suse.com/security/cve/CVE-2024-8006.html
CVE-2024-8006
https://bugzilla.suse.com/1230034
SUSE Bug 1230034