Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 561
Alerts This Week
Warning Icon 1 561

SUSE: 2018:2412-1 Moderate: Wireshark Security Advisory

suse
Calendar Grey August 17, 2018
Scroller Suse Esm H88
This Fedora security bulletin addresses 22 vulnerabilities in Snort, improving system reliability through critical patches.
An update that fixes 19 vulnerabilities is now available

Summary

This update for wireshark fixes the following issues: Security issues fixed: - bsc#1094301: Wireshark security update to 2.6.1, 2.4.7, 2.2.15 - CVE-2018-14339: MMSE dissector infinite loop (wnpa-sec-2018-38, bsc#1101810) - CVE-2018-14341: DICOM dissector crash (wnpa-sec-2018-39, bsc#1101776) - CVE-2018-14343: ASN.1 BER dissector crash (wnpa-sec-2018-37, bsc#1101786) - CVE-2018-14344: ISMP dissector crash (wnpa-sec-2018-35, bsc#1101788) - CVE-2018-14340: Multiple dissectors could crash (wnpa-sec-2018-36, bsc#1101804) - CVE-2018-14342: BGP dissector large loop (wnpa-sec-2018-34, bsc#1101777) - CVE-2018-14370: IEEE 802.11 dissector crash (wnpa-sec-2018-43, bsc#1101802) - CVE-2018-14369: HTTP2 dissector crash (wnpa-sec-2018-41, bsc#1101800)

References

#1094301 #1101776 #1101777 #1101786 #1101788

#1101791 #1101794 #1101800 #1101802 #1101804

#1101810

Cross- CVE-2018-11354 CVE-2018-11355 CVE-2018-11356

CVE-2018-11357 CVE-2018-11358 CVE-2018-11359

CVE-2018-11360 CVE-2018-11361 CVE-2018-11362

CVE-2018-14339 CVE-2018-14340 CVE-2018-14341

CVE-2018-14342 CVE-2018-14343 CVE-2018-14344

CVE-2018-14367 CVE-2018-14368 CVE-2018-14369

CVE-2018-14370

Affected Products:

SUSE Linux Enterprise Software Development Kit 11-SP4

SUSE Linux Enterprise Server 11-SP4

SUSE Linux Enterprise Debuginfo 11-SP4

https://www.suse.com/security/cve/CVE-2018-11354.html

https://www.suse.com/security/cve/CVE-2018-11355.html

https://www.suse.com/security/cve/CVE-2018-11356.html

Announcement ID: SUSE-SU-2018:2412-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.