Описание
Security update for wireshark
This update for wireshark fixes the following issues:
- Update to Wireshark 3.4.10:
- CVE-2021-39920: IPPUSB dissector crash (bsc#1192830).
- CVE-2021-39921: Modbus dissector crash (bsc#1192830).
- CVE-2021-39922: C12.22 dissector crash (bsc#1192830).
- CVE-2021-39924: Bluetooth DHT dissector large loop (bsc#1192830).
- CVE-2021-39925: Bluetooth SDP dissector crash (bsc#1192830).
- CVE-2021-39926: Bluetooth HCI_ISO dissector crash (bsc#1192830).
- CVE-2021-39928: IEEE 802.11 dissector crash (bsc#1192830).
- CVE-2021-39929: Bluetooth DHT dissector crash (bsc#1192830).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.2
Ссылки
- E-Mail link for openSUSE-SU-2021:1566-1
- SUSE Security Ratings
- SUSE Bug 1192830
- SUSE CVE CVE-2021-39920 page
- SUSE CVE CVE-2021-39921 page
- SUSE CVE CVE-2021-39922 page
- SUSE CVE CVE-2021-39924 page
- SUSE CVE CVE-2021-39925 page
- SUSE CVE CVE-2021-39926 page
- SUSE CVE CVE-2021-39928 page
- SUSE CVE CVE-2021-39929 page
Описание
NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Ссылки
- CVE-2021-39920
- SUSE Bug 1192830
Описание
NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Ссылки
- CVE-2021-39921
- SUSE Bug 1192830
Описание
Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Ссылки
- CVE-2021-39922
- SUSE Bug 1192830
Описание
Large loop in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Ссылки
- CVE-2021-39924
- SUSE Bug 1192830
Описание
Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Ссылки
- CVE-2021-39925
- SUSE Bug 1192830
Описание
Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Ссылки
- CVE-2021-39926
- SUSE Bug 1192830
Описание
NULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Ссылки
- CVE-2021-39928
- SUSE Bug 1192830
Описание
Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file
Затронутые продукты
Ссылки
- CVE-2021-39929
- SUSE Bug 1192830