Описание
Security update for wireshark
This update for wireshark fixes the following issues:
- CVE-2024-11595: FiveCo RAP dissector infinite loop (bsc#1233594).
- CVE-2024-11596: ECMP dissector crash (bsc#1233593).
Список пакетов
Image SLES15-SP6-SAP-Azure-LI-BYOS
libwireshark17-4.2.9-150600.18.17.1
libwiretap14-4.2.9-150600.18.17.1
libwsutil15-4.2.9-150600.18.17.1
wireshark-4.2.9-150600.18.17.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production
libwireshark17-4.2.9-150600.18.17.1
libwiretap14-4.2.9-150600.18.17.1
libwsutil15-4.2.9-150600.18.17.1
wireshark-4.2.9-150600.18.17.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS
libwireshark17-4.2.9-150600.18.17.1
libwiretap14-4.2.9-150600.18.17.1
libwsutil15-4.2.9-150600.18.17.1
wireshark-4.2.9-150600.18.17.1
Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production
libwireshark17-4.2.9-150600.18.17.1
libwiretap14-4.2.9-150600.18.17.1
libwsutil15-4.2.9-150600.18.17.1
wireshark-4.2.9-150600.18.17.1
SUSE Linux Enterprise Module for Basesystem 15 SP6
libwireshark17-4.2.9-150600.18.17.1
libwiretap14-4.2.9-150600.18.17.1
libwsutil15-4.2.9-150600.18.17.1
wireshark-4.2.9-150600.18.17.1
SUSE Linux Enterprise Module for Desktop Applications 15 SP6
wireshark-devel-4.2.9-150600.18.17.1
wireshark-ui-qt-4.2.9-150600.18.17.1
openSUSE Leap 15.6
libwireshark17-4.2.9-150600.18.17.1
libwiretap14-4.2.9-150600.18.17.1
libwsutil15-4.2.9-150600.18.17.1
wireshark-4.2.9-150600.18.17.1
wireshark-devel-4.2.9-150600.18.17.1
wireshark-ui-qt-4.2.9-150600.18.17.1
Ссылки
- Link for SUSE-SU-2024:4142-1
- E-Mail link for SUSE-SU-2024:4142-1
- SUSE Security Ratings
- SUSE Bug 1233593
- SUSE Bug 1233594
- SUSE CVE CVE-2024-11595 page
- SUSE CVE CVE-2024-11596 page
Описание
FiveCo RAP dissector infinite loop in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production:libwireshark17-4.2.9-150600.18.17.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production:libwiretap14-4.2.9-150600.18.17.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production:libwsutil15-4.2.9-150600.18.17.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production:wireshark-4.2.9-150600.18.17.1
Ссылки
- CVE-2024-11595
- SUSE Bug 1233594
Описание
ECMP dissector crash in Wireshark 4.4.0 to 4.4.1 and 4.2.0 to 4.2.8 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production:libwireshark17-4.2.9-150600.18.17.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production:libwiretap14-4.2.9-150600.18.17.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production:libwsutil15-4.2.9-150600.18.17.1
Image SLES15-SP6-SAP-Azure-LI-BYOS-Production:wireshark-4.2.9-150600.18.17.1
Ссылки
- CVE-2024-11596
- SUSE Bug 1233593