Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

openSUSE 15.4 15.5 SUSE-SU-2023:3252-1 moderate: wireshark fixes

opensuse
Calendar Grey August 9, 2023
Dist Opensuse Esm H88
This release addresses various bugs in Wireshark, improving security with significant patches and revised protocol compatibility.
This update for wireshark fixes the following issues: Update to Wireshark 3.6.15: \- Further features, bug fixes and updated protocol support as listed in:

Description

This update for wireshark fixes the following issues:

Update to Wireshark 3.6.15: \- Further features, bug fixes and updated protocol

support as listed in:

https://www.wireshark.org/docs/relnotes/wireshark-3.6.15.html

Security fixes: \- CVE-2023-0667: Fixed failure to validate MS-MMS packet length

(bsc#1212084). \- CVE-2023-0668: Fixed IEEE C37.118 Synchrophasor dissector

crash (bsc#1211710). \- CVE-2023-2855: Fixed Candump log file parser crash

(bsc#1211703). \- CVE-2023-2856: Fixed VMS TCPIPtrace file parser crash

(bsc#1211707). \- CVE-2023-2857: Fixed BLF file parser crash (bsc#1211705). \-

CVE-2023-2858: Fixed NetScaler file parser crash (bsc#1211706). \-

CVE-2023-2879: Fixed GDSDB dissector infinite loop (bsc#1211793). \-

CVE-2023-2952: Fixed XRA dissector infinite loop (bsc#1211844). \-

CVE-2023-3648: Fixed Kafka dissector crash (bsc#1213319).

Topics%20covered

Topics Covered

security advisory security update software update security fix moderate severity wireshark openSUSE networks moderate level

Patch

## Patch Instructions:

To install this SUSE Moderate update use the SUSE recommended installation

methods like YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4

zypper in -t patch openSUSE-SLE-15.4-2023-3252=1

* openSUSE Leap 15.5

zypper in -t patch openSUSE-SLE-15.5-2023-3252=1

* Basesystem Module 15-SP4

zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-3252=1

* Basesystem Module 15-SP5

zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2023-3252=1

* Desktop Applications Module 15-SP4

zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2023-3252=1

* Desktop Applications Module 15-SP5

zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2023-3252=1

* SUSE Linux Enterprise Real Time 15 SP3

zypper in -t patch SUSE-SLE-Product-RT-15-SP3-2023-3252=1

* SUSE Manager Proxy 4.2

zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.2-2023-3252=1

* SUSE Manager Retail Branch Server 4.2

zypper in -t patch...

Read the Full Advisory

Package List

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64)

* wireshark-ui-qt-debuginfo-3.6.15-150000.3.97.1

* libwiretap12-debuginfo-3.6.15-150000.3.97.1

* wireshark-ui-qt-3.6.15-150000.3.97.1

* libwiretap12-3.6.15-150000.3.97.1

* libwsutil13-debuginfo-3.6.15-150000.3.97.1

* wireshark-3.6.15-150000.3.97.1

* wireshark-devel-3.6.15-150000.3.97.1

* libwsutil13-3.6.15-150000.3.97.1

* wireshark-debuginfo-3.6.15-150000.3.97.1

* wireshark-debugsource-3.6.15-150000.3.97.1

* libwireshark15-3.6.15-150000.3.97.1

* libwireshark15-debuginfo-3.6.15-150000.3.97.1

* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)

* wireshark-ui-qt-debuginfo-3.6.15-150000.3.97.1

* libwiretap12-debuginfo-3.6.15-150000.3.97.1

* wireshark-ui-qt-3.6.15-150000.3.97.1

* libwiretap12-3.6.15-150000.3.97.1

* libwsutil13-debuginfo-3.6.15-150000.3.97.1

* wireshark-3.6.15-150000.3.97.1

* wireshark-devel-3.6.15-150000.3.97.1

* libwsutil13-3.6.15-150000.3.97.1

* wireshark-debuginfo-3.6.15-150000.3.97.1

* wireshark-debugsource-3.6.15-150000.3.97.1

*...

Read the Full Advisory

References

* #1211703

* #1211705

* #1211706

* #1211707

* #1211710

* #1211793

* #1211844

* #1212084

* #1213319

## References:

* https://www.suse.com/security/cve/CVE-2023-0667.html

* https://www.suse.com/security/cve/CVE-2023-0668.html

* https://www.suse.com/security/cve/CVE-2023-2855.html

* https://www.suse.com/security/cve/CVE-2023-2856.html

* https://www.suse.com/security/cve/CVE-2023-2857.html

* https://www.suse.com/security/cve/CVE-2023-2858.html

* https://www.suse.com/security/cve/CVE-2023-2879.html

* https://www.suse.com/security/cve/CVE-2023-2952.html

* https://www.suse.com/security/cve/CVE-2023-3648.html

* https://bugzilla.suse.com/show_bug.cgi?id=1211703

* https://bugzilla.suse.com/show_bug.cgi?id=1211705

* https://bugzilla.suse.com/show_bug.cgi?id=1211706

* https://bugzilla.suse.com/show_bug.cgi?id=1211707

* https://bugzilla.suse.com/show_bug.cgi?id=1211710

* https://bugzilla.suse.com/show_bug.cgi?id=1211793

* https://bugzilla.suse.com/show_bug.cgi?id=1211844

* https://bugzilla.suse.com/show_bug.cgi?id=1212084

*...

Read the Full Advisory

Announcement ID: SUSE-SU-2023:3252-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory security update software update security fix moderate severity wireshark openSUSE networks moderate level

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here