SuSE 11.2 Security Update : wireshark (SAT Patch Number 7240)

Medium Nessus Plugin ID 64469

Synopsis

The remote SuSE 11 host is missing a security update.

Description

This update to 1.8.4 fixes the following issues :

- Wireshark could leak potentially sensitive host name resolution information when working with multiple pcap-ng files. (wnpa-sec-2012-30, CVE-2012-5592)

- The USB dissector could go into an infinite loop.
(wnpa-sec-2012-31, CVE-2012-5593)

- The sFlow dissector could go into an infinite loop.
(npa-sec-2012-32, CVE-2012-5594)

- The SCTP dissector could go into an infinite loop.
(wnpa-sec-2012-33, CVE-2012-5595)

- The EIGRP dissector could go into an infinite loop.
(wnpa-sec-2012-34, CVE-2012-5596)

- The ISAKMP dissector could crash. (wnpa-sec-2012-35, CVE-2012-5597)

- The iSCSI dissector could go into an infinite loop.
(wnpa-sec-2012-36, CVE-2012-5598)

- The WTP dissector could go into an infinite loop.
(wnpa-sec-2012-37, CVE-2012-5599)

- The RTCP dissector could go into an infinite loop.
(wnpa-sec-2012-38, CVE-2012-5600)

- The 3GPP2 A11 dissector could go into an infinite loop.
(wnpa-sec-2012-39, CVE-2012-5601)

- The ICMPv6 dissector could go into an infinite loop.
(wnpa-sec-2012-40, CVE-2012-5602) Further bug fixes and updated protocol support as listed at http://www.wireshark.org/docs/relnotes/wireshark-1.8.4.h tml

Solution

Apply SAT patch number 7240.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=792005

http://support.novell.com/security/cve/CVE-2012-5592.html

http://support.novell.com/security/cve/CVE-2012-5593.html

http://support.novell.com/security/cve/CVE-2012-5594.html

http://support.novell.com/security/cve/CVE-2012-5595.html

http://support.novell.com/security/cve/CVE-2012-5596.html

http://support.novell.com/security/cve/CVE-2012-5597.html

http://support.novell.com/security/cve/CVE-2012-5598.html

http://support.novell.com/security/cve/CVE-2012-5599.html

http://support.novell.com/security/cve/CVE-2012-5600.html

http://support.novell.com/security/cve/CVE-2012-5601.html

http://support.novell.com/security/cve/CVE-2012-5602.html

Plugin Details

Severity: Medium

ID: 64469

File Name: suse_11_wireshark-130116.nasl

Version: Revision: 1.3

Type: local

Agent: unix

Published: 2013/02/05

Updated: 2013/10/25

Dependencies: 12634

Risk Information

Risk Factor: Medium

CVSS v2.0

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:11:wireshark, cpe:/o:novell:suse_linux:11

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2013/01/16

Reference Information

CVE: CVE-2012-6052, CVE-2012-6053, CVE-2012-6054, CVE-2012-6055, CVE-2012-6056, CVE-2012-6057, CVE-2012-6058, CVE-2012-6059, CVE-2012-6060, CVE-2012-6061, CVE-2012-6062