Описание
Security update for wireshark
This update for wireshark to version 2.4.16 fixes the following issues:
Security issue fixed:
- CVE-2019-13619: ASN.1 BER and related dissectors crash (bsc#1141980).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.0
libwireshark9-2.4.16-lp151.2.6.1
libwiretap7-2.4.16-lp151.2.6.1
libwscodecs1-2.4.16-lp151.2.6.1
libwsutil8-2.4.16-lp151.2.6.1
wireshark-2.4.16-lp151.2.6.1
wireshark-devel-2.4.16-lp151.2.6.1
wireshark-ui-qt-2.4.16-lp151.2.6.1
openSUSE Leap 15.1
libwireshark9-2.4.16-lp151.2.6.1
libwiretap7-2.4.16-lp151.2.6.1
libwscodecs1-2.4.16-lp151.2.6.1
libwsutil8-2.4.16-lp151.2.6.1
wireshark-2.4.16-lp151.2.6.1
wireshark-devel-2.4.16-lp151.2.6.1
wireshark-ui-qt-2.4.16-lp151.2.6.1
Ссылки
- E-Mail link for openSUSE-SU-2019:1965-1
- SUSE Security Ratings
- SUSE Bug 1141980
- SUSE CVE CVE-2019-13619 page
Описание
In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer increments.
Затронутые продукты
openSUSE Leap 15.0:libwireshark9-2.4.16-lp151.2.6.1
openSUSE Leap 15.0:libwiretap7-2.4.16-lp151.2.6.1
openSUSE Leap 15.0:libwscodecs1-2.4.16-lp151.2.6.1
openSUSE Leap 15.0:libwsutil8-2.4.16-lp151.2.6.1
Ссылки
- CVE-2019-13619
- SUSE Bug 1141980