SuSE 11.2 Security Update : wireshark (SAT Patch Number 7240)

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 11 host is missing a security update.

Description :

This update to 1.8.4 fixes the following issues :

- Wireshark could leak potentially sensitive host name
resolution information when working with multiple
pcap-ng files. (wnpa-sec-2012-30, CVE-2012-5592)

- The USB dissector could go into an infinite loop.
(wnpa-sec-2012-31, CVE-2012-5593)

- The sFlow dissector could go into an infinite loop.
(npa-sec-2012-32, CVE-2012-5594)

- The SCTP dissector could go into an infinite loop.
(wnpa-sec-2012-33, CVE-2012-5595)

- The EIGRP dissector could go into an infinite loop.
(wnpa-sec-2012-34, CVE-2012-5596)

- The ISAKMP dissector could crash. (wnpa-sec-2012-35,
CVE-2012-5597)

- The iSCSI dissector could go into an infinite loop.
(wnpa-sec-2012-36, CVE-2012-5598)

- The WTP dissector could go into an infinite loop.
(wnpa-sec-2012-37, CVE-2012-5599)

- The RTCP dissector could go into an infinite loop.
(wnpa-sec-2012-38, CVE-2012-5600)

- The 3GPP2 A11 dissector could go into an infinite loop.
(wnpa-sec-2012-39, CVE-2012-5601)

- The ICMPv6 dissector could go into an infinite loop.
(wnpa-sec-2012-40, CVE-2012-5602) Further bug fixes and
updated protocol support as listed at
http://www.wireshark.org/docs/relnotes/wireshark-1.8.4.h
tml

See also :

https://bugzilla.novell.com/show_bug.cgi?id=792005
http://support.novell.com/security/cve/CVE-2012-5592.html
http://support.novell.com/security/cve/CVE-2012-5593.html
http://support.novell.com/security/cve/CVE-2012-5594.html
http://support.novell.com/security/cve/CVE-2012-5595.html
http://support.novell.com/security/cve/CVE-2012-5596.html
http://support.novell.com/security/cve/CVE-2012-5597.html
http://support.novell.com/security/cve/CVE-2012-5598.html
http://support.novell.com/security/cve/CVE-2012-5599.html
http://support.novell.com/security/cve/CVE-2012-5600.html
http://support.novell.com/security/cve/CVE-2012-5601.html
http://support.novell.com/security/cve/CVE-2012-5602.html

Solution :

Apply SAT patch number 7240.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now