SUSE-SU-2025:03294-1

Опубликовано: 22 сент. 2025

Источник: suse-cvrf

Описание

Security update for wireshark

This update for wireshark fixes the following issues:

Update to version 4.2.13.

Security issues fixed:

CVE-2025-9817: SSH dissector crash due to NULL pointer dereference when processing malformed packet traces (bsc#1249090).

Non-security issues fixed:

Bug in UDS dissector with Service ReadDataByPeriodicIdentifier Response.
Incorrectly parsed application/x-www-form-urlencoded key following a name-value byte sequence with no =.
DNP3 time stamp not working after epoch time (year 2038).
Bug in LZ77 decoder; reads a 16-bit length when it should read a 32-bit length.

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP6

libwireshark17-4.2.13-150600.18.26.1

libwiretap14-4.2.13-150600.18.26.1

libwsutil15-4.2.13-150600.18.26.1

wireshark-4.2.13-150600.18.26.1

SUSE Linux Enterprise Module for Basesystem 15 SP7

libwireshark17-4.2.13-150600.18.26.1

libwiretap14-4.2.13-150600.18.26.1

libwsutil15-4.2.13-150600.18.26.1

wireshark-4.2.13-150600.18.26.1

SUSE Linux Enterprise Module for Desktop Applications 15 SP6

wireshark-devel-4.2.13-150600.18.26.1

wireshark-ui-qt-4.2.13-150600.18.26.1

SUSE Linux Enterprise Module for Desktop Applications 15 SP7

wireshark-devel-4.2.13-150600.18.26.1

wireshark-ui-qt-4.2.13-150600.18.26.1

openSUSE Leap 15.6

libwireshark17-4.2.13-150600.18.26.1

libwiretap14-4.2.13-150600.18.26.1

libwsutil15-4.2.13-150600.18.26.1

wireshark-4.2.13-150600.18.26.1

wireshark-devel-4.2.13-150600.18.26.1

wireshark-ui-qt-4.2.13-150600.18.26.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-202503294-1/
Link for SUSE-SU-2025:03294-1
https://lists.suse.com/pipermail/sle-updates/2025-September/041794.html
E-Mail link for SUSE-SU-2025:03294-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1249090
SUSE Bug 1249090
https://www.suse.com/security/cve/CVE-2025-9817/
SUSE CVE CVE-2025-9817 page

Описание

SSH dissector crash in Wireshark 4.4.0 to 4.4.8 allows denial of service

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP6:libwireshark17-4.2.13-150600.18.26.1

SUSE Linux Enterprise Module for Basesystem 15 SP6:libwiretap14-4.2.13-150600.18.26.1

SUSE Linux Enterprise Module for Basesystem 15 SP6:libwsutil15-4.2.13-150600.18.26.1

SUSE Linux Enterprise Module for Basesystem 15 SP6:wireshark-4.2.13-150600.18.26.1

Ссылки

https://www.suse.com/security/cve/CVE-2025-9817.html
CVE-2025-9817
https://bugzilla.suse.com/1249090
SUSE Bug 1249090

SUSE-SU-2025:03294-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP6

SUSE Linux Enterprise Module for Basesystem 15 SP7

SUSE Linux Enterprise Module for Desktop Applications 15 SP6

SUSE Linux Enterprise Module for Desktop Applications 15 SP7

openSUSE Leap 15.6

Ссылки

Уязвимость: CVE-2025-9817

Описание

Затронутые продукты

Ссылки