openSUSE-SU-2020:0362

106051

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14466

https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=dc4d209f39132a4ae05675a11609176ae9705cfc

[debian-lts-announce] 20190115 [SECURITY] [DLA 1634-1] wireshark security update

DSA-4359

https://www.wireshark.org/security/wnpa-sec-2018-51.html

This update for wireshark and libmaxminddb fixes the following issues :

Update wireshark to new major version 3.2.2 and introduce libmaxminddb for GeoIP support (bsc#1156288).

New features include :

  - Added support for 111 new protocols, including     WireGuard, LoRaWAN, TPM 2.0, 802.11ax and QUIC

  - Improved support for existing protocols, like HTTP/2

  - Improved analytics and usability functionalities

This update was imported from the SUSE:SLE-15:Update update project.

This update for wireshark and libmaxminddb fixes the following issues :

Update wireshark to new major version 3.2.2 and introduce libmaxminddb for GeoIP support (bsc#1156288).

New features include :

Added support for 111 new protocols, including WireGuard, LoRaWAN, TPM 2.0, 802.11ax and QUIC

Improved support for existing protocols, like HTTP/2

Improved analytics and usability functionalities

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for wireshark fixes the following issues :

Update to Wireshark 2.4.11 (bsc#1117740).

Security issues fixed :

  - CVE-2018-19625: The Wireshark dissection engine could     crash (wnpa-sec-2018-51)

  - CVE-2018-19626: The DCOM dissector could crash     (wnpa-sec-2018-52)

  - CVE-2018-19623: The LBMPDM dissector could crash     (wnpa-sec-2018-53) 

  - CVE-2018-19622: The MMSE dissector could go into an     infinite loop (wnpa-sec-2018-54)

  - CVE-2018-19627: The IxVeriWave file parser could crash     (wnpa-sec-2018-55) 

  - CVE-2018-19624: The PVFS dissector could crash     (wnpa-sec-2018-56)

Further bug fixes and updated protocol support as listed in :

- https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html

This update was imported from the SUSE:SLE-15:Update update project.

Several issues in wireshark, a tool that captures and analyzes packets off the wire, have been found by different people. These are basically issues with length checks or invalid memory access in different dissectors. This could result in infinite loops or crashes by malicious packets.

For Debian 8 'Jessie', these problems have been fixed in version 1.12.1+g01b65bf-4+deb8u16.

We recommend that you upgrade your wireshark packages.

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

New version 2.6.5, contains fixes for CVE-2018-19622, CVE-2018-19623, CVE-2018-19624, CVE-2018-19625, CVE-2018-19626, CVE-2018-19627, CVE-2018-19628

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

This update for wireshark fixes the following issues :

Update to Wireshark 2.4.11 (bsc#1117740).

Security issues fixed :

CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51)

CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52)

CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53)

CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54)

CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55)

CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56)

Further bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Multiple vulnerabilities have been discovered in Wireshark, a network protocol analyzer, which could result in denial of service or the execution of arbitrary code.

The version of Wireshark installed on the remote Windows host is 2.6.x prior to 2.6.5. It is, therefore, affected by multiple vulnerabilities.

The version of Wireshark installed on the remote Windows host is 2.4.x prior to 2.4.11. It is, therefore, affected by multiple vulnerabilities.

The version of Wireshark installed on the remote MacOS/MacOSX host is 2.6.x prior to 2.6.5. It is, therefore, affected by multiple vulnerabilities.

The version of Wireshark installed on the remote MacOS/MacOSX host is 2.4.x prior to 2.4.11. It is, therefore, affected by multiple vulnerabilities.

ID	Name	Product	Family	Severity
134755	openSUSE Security Update : wireshark (openSUSE-2020-362)	Nessus	SuSE Local Security Checks	high
134625	SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2020:0693-1)	Nessus	SuSE Local Security Checks	high
123166	openSUSE Security Update : wireshark (openSUSE-2019-1045)	Nessus	SuSE Local Security Checks	medium
121193	Debian DLA-1634-1 : wireshark security update	Nessus	Debian Local Security Checks	high
120792	Fedora 29 : 1:wireshark (2018-cb410a3812)	Nessus	Fedora Local Security Checks	medium
120265	Fedora 28 : 1:wireshark (2018-1b6cb1df72)	Nessus	Fedora Local Security Checks	medium
120194	SUSE SLED15 / SLES15 Security Update : wireshark (SUSE-SU-2018:4295-1)	Nessus	SuSE Local Security Checks	medium
119956	SUSE SLED12 / SLES12 Security Update : wireshark (SUSE-SU-2018:4298-1)	Nessus	SuSE Local Security Checks	medium
119950	openSUSE Security Update : wireshark (openSUSE-2018-1620)	Nessus	SuSE Local Security Checks	medium
119892	Debian DSA-4359-1 : wireshark - security update	Nessus	Debian Local Security Checks	high
119420	Wireshark 2.6.x < 2.6.5 Multiple Vulnerabilities	Nessus	Windows	medium
119419	Wireshark 2.4.x < 2.4.11 Multiple Vulnerabilities	Nessus	Windows	medium
119418	Wireshark 2.6.x < 2.6.5 Multiple Vulnerabilities (MacOS)	Nessus	MacOS X Local Security Checks	medium
119417	Wireshark 2.4.x < 2.4.11 Multiple Vulnerabilities (MacOS)	Nessus	MacOS X Local Security Checks	medium

CVE-2018-19625

Description

References

Details

Risk Information

CVSS v2.0

CVSS v3.0

Vulnerable Software

Configuration 1

Configuration 2

Tenable Plugins