Описание
Security update for wireshark
This update for wireshark fixes the following issues:
Security issues fixed:
- CVE-2018-7325: RPKI-Router infinite loop (boo#1082692)
- CVE-2018-14342: BGP dissector large loop (wnpa-sec-2018-34, boo#1101777)
- CVE-2018-14344: ISMP dissector crash (wnpa-sec-2018-35, boo#1101788)
- CVE-2018-14340: Multiple dissectors could crash (wnpa-sec-2018-36, boo#1101804)
- CVE-2018-14343: ASN.1 BER dissector crash (wnpa-sec-2018-37, boo#1101786)
- CVE-2018-14339: MMSE dissector infinite loop (wnpa-sec-2018-38, boo#1101810)
- CVE-2018-14341: DICOM dissector crash (wnpa-sec-2018-39, boo#1101776)
- CVE-2018-14368: Bazaar dissector infinite loop (wnpa-sec-2018-40, boo#1101794)
- CVE-2018-14369: HTTP2 dissector crash (wnpa-sec-2018-41, boo#1101800)
Bug fixes:
- Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.2.16.html
Список пакетов
openSUSE Leap 42.3
Ссылки
- E-Mail link for openSUSE-SU-2018:2188-1
- SUSE Security Ratings
Описание
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the MMSE dissector could go into an infinite loop. This was addressed in epan/proto.c by adding offset and length validation.
Затронутые продукты
Ссылки
- CVE-2018-14339
- SUSE Bug 1101810
Описание
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read.
Затронутые продукты
Ссылки
- CVE-2018-14340
- SUSE Bug 1101804
Описание
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the DICOM dissector could go into a large or infinite loop. This was addressed in epan/dissectors/packet-dcm.c by preventing an offset overflow.
Затронутые продукты
Ссылки
- CVE-2018-14341
- SUSE Bug 1101776
Описание
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. This was addressed in epan/dissectors/packet-bgp.c by validating Path Attribute lengths.
Затронутые продукты
Ссылки
- CVE-2018-14342
- SUSE Bug 1101777
Описание
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ASN.1 BER dissector could crash. This was addressed in epan/dissectors/packet-ber.c by ensuring that length values do not exceed the maximum signed integer.
Затронутые продукты
Ссылки
- CVE-2018-14343
- SUSE Bug 1101786
Описание
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ISMP dissector could crash. This was addressed in epan/dissectors/packet-ismp.c by validating the IPX address length to avoid a buffer over-read.
Затронутые продукты
Ссылки
- CVE-2018-14344
- SUSE Bug 1101788
Описание
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by properly handling items that are too long.
Затронутые продукты
Ссылки
- CVE-2018-14368
- SUSE Bug 1101794
Описание
In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the HTTP2 dissector could crash. This was addressed in epan/dissectors/packet-http2.c by verifying that header data was found before proceeding to header decompression.
Затронутые продукты
Ссылки
- CVE-2018-14369
- SUSE Bug 1101800
Описание
In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, epan/dissectors/packet-rpki-rtr.c had an infinite loop that was addressed by validating a length field.
Затронутые продукты
Ссылки
- CVE-2018-7325
- SUSE Bug 1082692