openSUSE-SU-2020:0362

105174

1041609

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14884

https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=c48d6a6d60c5c9111838a945966b6cb8750777be

[debian-lts-announce] 20190115 [SECURITY] [DLA 1634-1] wireshark security update

DSA-4315

https://www.wireshark.org/security/wnpa-sec-2018-44.html

This update for wireshark and libmaxminddb fixes the following issues :

Update wireshark to new major version 3.2.2 and introduce libmaxminddb for GeoIP support (bsc#1156288).

New features include :

  - Added support for 111 new protocols, including     WireGuard, LoRaWAN, TPM 2.0, 802.11ax and QUIC

  - Improved support for existing protocols, like HTTP/2

  - Improved analytics and usability functionalities

This update was imported from the SUSE:SLE-15:Update update project.

This update for wireshark and libmaxminddb fixes the following issues :

Update wireshark to new major version 3.2.2 and introduce libmaxminddb for GeoIP support (bsc#1156288).

New features include :

Added support for 111 new protocols, including WireGuard, LoRaWAN, TPM 2.0, 802.11ax and QUIC

Improved support for existing protocols, like HTTP/2

Improved analytics and usability functionalities

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for wireshark to version 2.4.9 fixes the following issues :

Security issues fixed (bsc#1106514) :

  - CVE-2018-16058: Bluetooth AVDTP dissector crash     (wnpa-sec-2018-44)

  - CVE-2018-16056: Bluetooth Attribute Protocol dissector     crash (wnpa-sec-2018-45)

  - CVE-2018-16057: Radiotap dissector crash     (wnpa-sec-2018-46)

Further bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-2.4.9.html

The version of Wireshark installed on the remote macOS / Mac OS X host is 2.2.x prior to 2.2.17 / 2.4.x prior to 2.4.9 / 2.6.x prior to 2.6.3. It is, therefore, affected by multiple denial of service vulnerabilities in the following protocol dissectors:

  - Bluetooth Attribute Protocol

  - Radiotap

  - Bluetooth AVDTP

An attacker could cause Wireshark to crash by injecting a malformed packet onto the wire, or by convincing a user to read a malformed packet trace file.

Several issues in wireshark, a tool that captures and analyzes packets off the wire, have been found by different people. These are basically issues with length checks or invalid memory access in different dissectors. This could result in infinite loops or crashes by malicious packets.

For Debian 8 'Jessie', these problems have been fixed in version 1.12.1+g01b65bf-4+deb8u16.

We recommend that you upgrade your wireshark packages.

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

New version 2.6.4, contains security fix for CVE-2018-16056, CVE-2018-16057, CVE-2018-16058.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

New version 2.6.4, contains security fix for CVE-2018-16056, CVE-2018-16057, CVE-2018-16058, CVE-2018-18225, CVE-2018-18226, CVE-2018-18227, CVE-2018-12086.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for wireshark to version 2.4.9 fixes the following issues :

Security issues fixed (bsc#1106514) :

CVE-2018-16058: Bluetooth AVDTP dissector crash (wnpa-sec-2018-44)

CVE-2018-16056: Bluetooth Attribute Protocol dissector crash (wnpa-sec-2018-45)

CVE-2018-16057: Radiotap dissector crash (wnpa-sec-2018-46)

Further bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-2.4.9.html

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for wireshark to version 2.4.9 fixes the following issues :

Wireshark was updated to 2.4.9 (bsc#1094301, bsc#1106514).

Security issues fixed :

CVE-2018-16058: Bluetooth AVDTP dissector crash (wnpa-sec-2018-44)

CVE-2018-16056: Bluetooth Attribute Protocol dissector crash (wnpa-sec-2018-45)

CVE-2018-16057: Radiotap dissector crash (wnpa-sec-2018-46)

CVE-2018-11355: Fix RTCP dissector crash (bsc#1094301).

CVE-2018-14370: IEEE 802.11 dissector crash (wnpa-sec-2018-43, bsc#1101802)

CVE-2018-14368: Bazaar dissector infinite loop (wnpa-sec-2018-40, bsc#1101794)

CVE-2018-11362: Fix LDSS dissector crash (bsc#1094301).

CVE-2018-11361: Fix IEEE 802.11 dissector crash (bsc#1094301).

CVE-2018-11360: Fix GSM A DTAP dissector crash (bsc#1094301).

CVE-2018-14342: BGP dissector large loop (wnpa-sec-2018-34, bsc#1101777)

CVE-2018-14343: ASN.1 BER dissector crash (wnpa-sec-2018-37, bsc#1101786)

CVE-2018-14340: Multiple dissectors could crash (wnpa-sec-2018-36, bsc#1101804)

CVE-2018-14341: DICOM dissector crash (wnpa-sec-2018-39, bsc#1101776)

CVE-2018-11358: Fix Q.931 dissector crash (bsc#1094301).

CVE-2018-14344: ISMP dissector crash (wnpa-sec-2018-35, bsc#1101788)

CVE-2018-11359: Fix multiple dissectors crashs (bsc#1094301).

CVE-2018-11356: Fix DNS dissector crash (bsc#1094301).

CVE-2018-14339: MMSE dissector infinite loop (wnpa-sec-2018-38, bsc#1101810)

CVE-2018-11357: Fix multiple dissectors that could consume excessive memory (bsc#1094301).

CVE-2018-14367: CoAP dissector crash (wnpa-sec-2018-42, bsc#1101791)

CVE-2018-11354: Fix IEEE 1905.1a dissector crash (bsc#1094301).

CVE-2018-14369: HTTP2 dissector crash (wnpa-sec-2018-41, bsc#1101800)

Further bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-2.4.9.html

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Multiple vulnerabilities have been discovered in Wireshark, a network protocol analyzer which could result in denial of service or the execution of arbitrary code.

This update for wireshark fixes the following issues :

Update wireshark to version 2.2.17 (bsc#1106514) :

Security issues fixed :

CVE-2018-16058: Bluetooth AVDTP dissector crash (wnpa-sec-2018-44)

CVE-2018-16056: Bluetooth Attribute Protocol dissector crash (wnpa-sec-2018-45)

CVE-2018-16057: Radiotap dissector crash (wnpa-sec-2018-46)

Further bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-2.2.17.html

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

The version of Wireshark installed on the remote Windows host is 2.2.x prior to 2.2.17, 2.4.x prior to 2.4.9, or 2.6.x prior to 2.6.3.
It is, therefore, affected by multiple vulnerabilities.

This update for wireshark to version 2.2.17 fixes the following issues :

Security issues fixed (boo#1106514) :

  - CVE-2018-16058: Bluetooth AVDTP dissector crash     (wnpa-sec-2018-44)

  - CVE-2018-16056: Bluetooth Attribute Protocol dissector     crash (wnpa-sec-2018-45)

  - CVE-2018-16057: Radiotap dissector crash     (wnpa-sec-2018-46)

Further bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-2.2.17.html

ID	Name	Product	Family	Severity
134755	openSUSE Security Update : wireshark (openSUSE-2020-362)	Nessus	SuSE Local Security Checks	high
134625	SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2020:0693-1)	Nessus	SuSE Local Security Checks	high
123289	openSUSE Security Update : wireshark (openSUSE-2019-666)	Nessus	SuSE Local Security Checks	medium
121308	Wireshark 2.2.x < 2.2.17 / 2.4.x < 2.4.9 / 2.6.x < 2.6.3 Multiple Vulnerabilities (macOS)	Nessus	MacOS X Local Security Checks	medium
121193	Debian DLA-1634-1 : wireshark security update	Nessus	Debian Local Security Checks	high
120731	Fedora 29 : 1:wireshark (2018-b7a58187ba)	Nessus	Fedora Local Security Checks	medium
120589	Fedora 28 : 1:wireshark (2018-89413a04e0)	Nessus	Fedora Local Security Checks	high
120109	SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2018:2889-1)	Nessus	SuSE Local Security Checks	medium
118294	SUSE SLES12 Security Update : wireshark (SUSE-SU-2018:2891-2)	Nessus	SuSE Local Security Checks	high
118097	Debian DSA-4315-1 : wireshark - security update	Nessus	Debian Local Security Checks	medium
117821	SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2018:2891-1)	Nessus	SuSE Local Security Checks	high
117803	SUSE SLES11 Security Update : wireshark (SUSE-SU-2018:2872-1)	Nessus	SuSE Local Security Checks	medium
117339	Wireshark 2.2.x < 2.2.17 / 2.4.x < 2.4.9 / 2.6.x < 2.6.3 Multiple Vulnerabilities	Nessus	Windows	medium
117330	openSUSE Security Update : wireshark (openSUSE-2018-972)	Nessus	SuSE Local Security Checks	medium
112263	openSUSE Security Update : wireshark (openSUSE-2018-949)	Nessus	SuSE Local Security Checks	medium

CVE-2018-16058

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Configuration 2

Tenable Plugins