Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2021:3938-1

Опубликовано: 06 дек. 2021
Источник: suse-cvrf

Описание

Security update for wireshark

This update for wireshark fixes the following issues:

  • Update to Wireshark 3.4.10:
  • CVE-2021-39920: IPPUSB dissector crash (bsc#1192830).
  • CVE-2021-39921: Modbus dissector crash (bsc#1192830).
  • CVE-2021-39922: C12.22 dissector crash (bsc#1192830).
  • CVE-2021-39924: Bluetooth DHT dissector large loop (bsc#1192830).
  • CVE-2021-39925: Bluetooth SDP dissector crash (bsc#1192830).
  • CVE-2021-39926: Bluetooth HCI_ISO dissector crash (bsc#1192830).
  • CVE-2021-39928: IEEE 802.11 dissector crash (bsc#1192830).
  • CVE-2021-39929: Bluetooth DHT dissector crash (bsc#1192830).

Список пакетов

openSUSE Leap 15.3
libwireshark14-3.4.10-3.62.1
libwiretap11-3.4.10-3.62.1
libwsutil12-3.4.10-3.62.1
wireshark-3.4.10-3.62.1
wireshark-devel-3.4.10-3.62.1
wireshark-ui-qt-3.4.10-3.62.1

Ссылки

Описание

NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

Затронутые продукты
openSUSE Leap 15.3:libwireshark14-3.4.10-3.62.1
openSUSE Leap 15.3:libwiretap11-3.4.10-3.62.1
openSUSE Leap 15.3:libwsutil12-3.4.10-3.62.1
openSUSE Leap 15.3:wireshark-3.4.10-3.62.1
Ссылки

Описание

NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Затронутые продукты
openSUSE Leap 15.3:libwireshark14-3.4.10-3.62.1
openSUSE Leap 15.3:libwiretap11-3.4.10-3.62.1
openSUSE Leap 15.3:libwsutil12-3.4.10-3.62.1
openSUSE Leap 15.3:wireshark-3.4.10-3.62.1
Ссылки

Описание

Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Затронутые продукты
openSUSE Leap 15.3:libwireshark14-3.4.10-3.62.1
openSUSE Leap 15.3:libwiretap11-3.4.10-3.62.1
openSUSE Leap 15.3:libwsutil12-3.4.10-3.62.1
openSUSE Leap 15.3:wireshark-3.4.10-3.62.1
Ссылки

Описание

Large loop in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Затронутые продукты
openSUSE Leap 15.3:libwireshark14-3.4.10-3.62.1
openSUSE Leap 15.3:libwiretap11-3.4.10-3.62.1
openSUSE Leap 15.3:libwsutil12-3.4.10-3.62.1
openSUSE Leap 15.3:wireshark-3.4.10-3.62.1
Ссылки

Описание

Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Затронутые продукты
openSUSE Leap 15.3:libwireshark14-3.4.10-3.62.1
openSUSE Leap 15.3:libwiretap11-3.4.10-3.62.1
openSUSE Leap 15.3:libwsutil12-3.4.10-3.62.1
openSUSE Leap 15.3:wireshark-3.4.10-3.62.1
Ссылки

Описание

Buffer overflow in the Bluetooth HCI_ISO dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file

Затронутые продукты
openSUSE Leap 15.3:libwireshark14-3.4.10-3.62.1
openSUSE Leap 15.3:libwiretap11-3.4.10-3.62.1
openSUSE Leap 15.3:libwsutil12-3.4.10-3.62.1
openSUSE Leap 15.3:wireshark-3.4.10-3.62.1
Ссылки

Описание

NULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Затронутые продукты
openSUSE Leap 15.3:libwireshark14-3.4.10-3.62.1
openSUSE Leap 15.3:libwiretap11-3.4.10-3.62.1
openSUSE Leap 15.3:libwsutil12-3.4.10-3.62.1
openSUSE Leap 15.3:wireshark-3.4.10-3.62.1
Ссылки

Описание

Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 to 3.2.17 allows denial of service via packet injection or crafted capture file

Затронутые продукты
openSUSE Leap 15.3:libwireshark14-3.4.10-3.62.1
openSUSE Leap 15.3:libwiretap11-3.4.10-3.62.1
openSUSE Leap 15.3:libwsutil12-3.4.10-3.62.1
openSUSE Leap 15.3:wireshark-3.4.10-3.62.1
Ссылки