Alerts This Week
Warning Icon 1 1,394
Alerts This Week
Warning Icon 1 1,394

SUSE: 2019:0138-1 Moderate: Wireshark Denial Of Service Issues

suse
Calendar Grey January 21, 2019
Dist Suse Esm H88
SUSE Security Update: Security update for wireshark ________________________________________________
An update that fixes four vulnerabilities is now available

Summary

This update for wireshark to version 2.4.12 fixes the following issues: Security issues fixed: - CVE-2019-5717: Fixed a denial of service in the P_MUL dissector (bsc#1121232) - CVE-2019-5718: Fixed a denial of service in the RTSE dissector and other dissectors (bsc#1121233) - CVE-2019-5719: Fixed a denial of service in the ISAKMP dissector (bsc#1121234) - CVE-2019-5721: Fixed a denial of service in the ISAKMP dissector (bsc#1121235) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP4: zypper in -t patch SUSE-SLE-SDK-12-SP4-2019-138=1 - SUSE Linux Enterprise Software Development Kit 12-SP3:

References

#1121232 #1121233 #1121234 #1121235

Cross- CVE-2019-5717 CVE-2019-5718 CVE-2019-5719

CVE-2019-5721

Affected Products:

SUSE Linux Enterprise Software Development Kit 12-SP4

SUSE Linux Enterprise Software Development Kit 12-SP3

SUSE Linux Enterprise Server 12-SP4

SUSE Linux Enterprise Server 12-SP3

SUSE Linux Enterprise Desktop 12-SP4

SUSE Linux Enterprise Desktop 12-SP3

https://www.suse.com/security/cve/CVE-2019-5717.html

https://www.suse.com/security/cve/CVE-2019-5718.html

https://www.suse.com/security/cve/CVE-2019-5719.html

https://www.suse.com/security/cve/CVE-2019-5721.html

https://bugzilla.suse.com/1121232

https://bugzilla.suse.com/1121233

https://bugzilla.suse.com/1121234

https://bugzilla.suse.com/1121235

Announcement ID: SUSE-SU-2019:0138-1
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here