Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

SUSE Linux Enterprise 15: SUSE-SU-2022:0375-1 Moderate: Wireshark Updates

suse
Calendar Grey February 14, 2022
Dist Suse Esm H88
Addresses multiple vulnerabilities in Wireshark as part of update SUSE-SU-2022:0412-1. Refer to the patch notes for comprehensive information on affected systems and relevant fixes.
An update that solves 6 vulnerabilities, contains one feature and has one errata is now available

Summary

This update for wireshark fixes the following issues: Update to version 3.6.1: - CVE-2021-4185: RTMPT dissector infinite loop (bsc#1194166) - CVE-2021-4184: BitTorrent DHT dissector infinite loop (bsc#1194167) - CVE-2021-4183: pcapng file parser crash (bsc#1194168) - CVE-2021-4182: RFC 7468 file parser infinite loop (bsc#1194169) - CVE-2021-4181: Sysdig Event dissector crash (bsc#1194170) - CVE-2021-4190: Kafka dissector infinite loop (bsc#1194171) - Support for Shared Memory Communications (SMC) (jsc#SLE-18727) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Manager Server 4.1:

Topics%20covered

Topics Covered

security advisory security fix moderate severity infinite loop Wireshark update SUSE Linux Enterprise pcapng parser

References

#1194166 #1194167 #1194168 #1194169 #1194170

#1194171 #1194780 SLE-18727

Cross- CVE-2021-4181 CVE-2021-4182 CVE-2021-4183

CVE-2021-4184 CVE-2021-4185 CVE-2021-4190

CVSS scores:

CVE-2021-4181 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVE-2021-4181 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CVE-2021-4182 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVE-2021-4182 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CVE-2021-4183 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

CVE-2021-4183 (SUSE): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

CVE-2021-4184 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVE-2021-4184 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Announcement ID: SUSE-SU-2022:0375-1
Rating: moderate

Topics%20covered

Topics Covered

security advisory security fix moderate severity infinite loop Wireshark update SUSE Linux Enterprise pcapng parser

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here