Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 17 articles for you...
100
security advisorymoderateSuSESUSE Linux 16.0 Wireshark Moderate Dissector Crash Advisory 2026-20222-1
An update that solves eight vulnerabilities can now be installed.. # Security update for wireshark Announcement ID: SUSE-SU-2026:20222-1 Release Date: 2026-02-02T12:56:02Z Rating: moderate References: * bsc#1249090 * bsc#1251933 * bsc#1254108 * bsc#1254471 * bsc#1254472 * bsc#1256734 * bsc#1256738 * bsc#1256739 Cross-References: * CVE-2025-11626 * CVE-2025-13499 * CVE-2025-13945 * CVE-2025-13946 * CVE-2025-9817 * CVE-2026-0959 * CVE-2026-0961 * CVE-2026-0962 CVSS scores: * CVE-2025-11626 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-11626 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-11626 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-13499 ( SUSE ): 6.9 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-13499 ( SUSE ): 6.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H * CVE-2025-13499 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-13499 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-13945 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-13945 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-13946 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-13946 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-9817 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-9817 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2025-9817 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H * CVE-2025-9817 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2026-0959 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-0959 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0959 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0959( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0961 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-0961 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0961 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0961 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0962 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-0962 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0962 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0962 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * SUSE Linux Enterprise Server 16.0 * SUSE Linux Enterprise Server for SAP Applications 16.0 An update that solves eight vulnerabilities can now be installed. ## Description: This update for wireshark fixes the following issues: Update to Wireshark 4.4.13: * CVE-2025-11626: MONGO dissector infinite loop (bsc#1251933). * CVE-2025-13499: Kafka dissector crash (bsc#1254108). * CVE-2025-13945: HTTP3 dissector crash (bsc#1254471). * CVE-2025-13946: MEGACO dissector infinite loop (bsc#1254472). * CVE-2025-9817: SSH dissector crash (bsc#1249090). * CVE-2026-0959: IEEE 802.11 dissector crash (bsc#1256734). * CVE-2026-0961: BLF file parser crash (bsc#1256738). * CVE-2026-0962: SOME/IP-SD dissector crash (bsc#1256739). Full changelog: https://www.wireshark.org/docs/relnotes/wireshark-4.4.13.html ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 16.0 zypper in -t patch SUSE-SLES-16.0-236=1 * SUSE Linux Enterprise Server for SAP Applications 16.0 zypper in -t patch SUSE-SLES-16.0-236=1 ## Package List: * SUSE Linux Enterprise Server 16.0 (aarch64ppc64le s390x x86_64) * wireshark-4.4.13-160000.1.1 * wireshark-devel-4.4.13-160000.1.1 * libwireshark18-4.4.13-160000.1.1 * libwiretap15-4.4.13-160000.1.1 * libwiretap15-debuginfo-4.4.13-160000.1.1 * wireshark-ui-qt-4.4.13-160000.1.1 * libwsutil16-4.4.13-160000.1.1 * wireshark-debugsource-4.4.13-160000.1.1 * libwireshark18-debuginfo-4.4.13-160000.1.1 * wireshark-debuginfo-4.4.13-160000.1.1 * wireshark-ui-qt-debuginfo-4.4.13-160000.1.1 * libwsutil16-debuginfo-4.4.13-160000.1.1 * SUSE Linux Enterprise Server for SAP Applications 16.0 (ppc64le x86_64) * wireshark-4.4.13-160000.1.1 * wireshark-devel-4.4.13-160000.1.1 * libwireshark18-4.4.13-160000.1.1 * libwiretap15-4.4.13-160000.1.1 * libwiretap15-debuginfo-4.4.13-160000.1.1 * wireshark-ui-qt-4.4.13-160000.1.1 * libwsutil16-4.4.13-160000.1.1 * wireshark-debugsource-4.4.13-160000.1.1 * libwireshark18-debuginfo-4.4.13-160000.1.1 * wireshark-debuginfo-4.4.13-160000.1.1 * wireshark-ui-qt-debuginfo-4.4.13-160000.1.1 * libwsutil16-debuginfo-4.4.13-160000.1.1 ## References: * https://www.suse.com/security/cve/CVE-2025-11626.html * https://www.suse.com/security/cve/CVE-2025-13499.html * https://www.suse.com/security/cve/CVE-2025-13945.html * https://www.suse.com/security/cve/CVE-2025-13946.html * https://www.suse.com/security/cve/CVE-2025-9817.html * https://www.suse.com/security/cve/CVE-2026-0959.html * https://www.suse.com/security/cve/CVE-2026-0961.html * https://www.suse.com/security/cve/CVE-2026-0962.html * https://bugzilla.suse.com/show_bug.cgi?id=1249090 * https://bugzilla.suse.com/show_bug.cgi?id=1251933 * https://bugzilla.suse.com/show_bug.cgi?id=1254108 * https://bugzilla.suse.com/show_bug.cgi?id=1254471 * https://bugzilla.suse.com/show_bug.cgi?id=1254472 * https://bugzilla.suse.com/show_bug.cgi?id=1256734 * https://bugzilla.suse.com/show_bug.cgi?id=1256738 * https://bugzilla.suse.com/show_bug.cgi?id=1256739 . SUSE has released asecurity update for Wireshark addressing eight significant vulnerabilities including crashes and infinite loops.. SUSE Wireshark Update Security Dissector Crashes. . LinuxSecurity.com Team
Feb 05, 2026
SuSE
100
security advisorymoderateSuSESUSE Wireshark Moderate Update CVE-2026-0959 CVE-2026-0960 CVE-2026-0962
An update that solves three vulnerabilities can now be installed.. # Security update for wireshark Announcement ID: SUSE-SU-2026:0237-1 Release Date: 2026-01-22T12:26:16Z Rating: moderate References: * bsc#1256734 * bsc#1256736 * bsc#1256739 Cross-References: * CVE-2026-0959 * CVE-2026-0960 * CVE-2026-0962 CVSS scores: * CVE-2026-0959 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-0959 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0959 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0959 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0960 ( SUSE ): 6.7 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-0960 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0960 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0960 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0962 ( SUSE ): 6.0 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-0962 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0962 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2026-0962 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP7 * Desktop Applications Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Desktop 15 SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves three vulnerabilities can now be installed. ## Description: This update for wireshark fixes the following issues: * CVE-2026-0959: IEEE 802.11 dissector crash (bsc#1256734). * CVE-2026-0960: HTTP3 dissector infinite loop (bsc#1256736). * CVE-2026-0962: SOME/IP-SD dissector crash (bsc#1256739). ## Patch Instructions: To install this SUSE update use theSUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * Desktop Applications Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP7-2026-237=1 * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-237=1 openSUSE-SLE-15.6-2026-237=1 * Basesystem Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP7-2026-237=1 ## Package List: * Desktop Applications Module 15-SP7 (aarch64 ppc64le s390x x86_64) * wireshark-devel-4.2.14-150600.18.35.1 * wireshark-debuginfo-4.2.14-150600.18.35.1 * wireshark-ui-qt-debuginfo-4.2.14-150600.18.35.1 * wireshark-debugsource-4.2.14-150600.18.35.1 * wireshark-ui-qt-4.2.14-150600.18.35.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586) * wireshark-devel-4.2.14-150600.18.35.1 * libwireshark17-debuginfo-4.2.14-150600.18.35.1 * wireshark-debuginfo-4.2.14-150600.18.35.1 * libwiretap14-debuginfo-4.2.14-150600.18.35.1 * libwiretap14-4.2.14-150600.18.35.1 * wireshark-ui-qt-debuginfo-4.2.14-150600.18.35.1 * wireshark-debugsource-4.2.14-150600.18.35.1 * libwsutil15-debuginfo-4.2.14-150600.18.35.1 * libwireshark17-4.2.14-150600.18.35.1 * wireshark-4.2.14-150600.18.35.1 * wireshark-ui-qt-4.2.14-150600.18.35.1 * libwsutil15-4.2.14-150600.18.35.1 * Basesystem Module 15-SP7 (aarch64 ppc64le s390x x86_64) * libwireshark17-debuginfo-4.2.14-150600.18.35.1 * wireshark-debuginfo-4.2.14-150600.18.35.1 * libwiretap14-debuginfo-4.2.14-150600.18.35.1 * libwiretap14-4.2.14-150600.18.35.1 * wireshark-debugsource-4.2.14-150600.18.35.1 * libwsutil15-debuginfo-4.2.14-150600.18.35.1 * libwireshark17-4.2.14-150600.18.35.1 * wireshark-4.2.14-150600.18.35.1 * libwsutil15-4.2.14-150600.18.35.1 ## References: * https://www.suse.com/security/cve/CVE-2026-0959.html * https://www.suse.com/security/cve/CVE-2026-0960.html *https://www.suse.com/security/cve/CVE-2026-0962.html * https://bugzilla.suse.com/show_bug.cgi?id=1256734 * https://bugzilla.suse.com/show_bug.cgi?id=1256736 * https://bugzilla.suse.com/show_bug.cgi?id=1256739 . A security update for Wireshark addresses three issues including crashes in dissectors. Install now to stay protected.. wireshark update,SUSE security,wireshark vulnerabilities,wireshark security advisory. . LinuxSecurity.com Team
Jan 22, 2026
SuSE
100
security advisoryimportantSUSESUSE: 2022:4453-1 Important: Wireshark Dissector Crash and Memory Issues
An update that solves one vulnerability and has two fixes is now available. . SUSE Security Update: Security update for wireshark ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4453-1 Rating: important References: #1204822 #1206189 #1206190 Cross-References: CVE-2022-3725 CVSS scores: CVE-2022-3725 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3725 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: SUSE CaaS Platform 4.0 SUSE Enterprise Storage 6 SUSE Enterprise Storage 7 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Desktop Applications 15-SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server 15-SP1-BCL SUSE Linux Enterprise Server 15-SP1-LTSS SUSE Linux Enterprise Server15-SP2-BCL SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP 15 SUSE Linux Enterprise Server for SAP 15-SP1 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.1 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that solves one vulnerability and has two fixes is now available. Description: This update for wireshark fixes the following issues: Update to version 3.6.10: - CVE-2022-3725: OPUS dissector crash (bsc#1204822). - Multiple dissector infinite loops (bsc#1206189). - Kafka dissector memory exhaustion (bsc#1206190). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4453=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4453=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-4453=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patchSUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-4453=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-4453=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-4453=1 - SUSE Linux Enterprise Server for SAP 15-SP1: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2022-4453=1 - SUSE Linux Enterprise Server for SAP 15: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2022-4453=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-4453=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-4453=1 - SUSE Linux Enterprise Server 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-4453=1 - SUSE Linux Enterprise Server 15-SP1-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-BCL-2022-4453=1 - SUSE Linux Enterprise Server 15-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-2022-4453=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP4: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-4453=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-4453=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-4453=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4453=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-4453=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-4453=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS: zypper in -tpatch SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-4453=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-4453=1 - SUSE Linux Enterprise High Performance Computing 15-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4453=1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4453=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-4453=1 - SUSE Enterprise Storage 6: zypper in -t patch SUSE-Storage-6-2022-4453=1 - SUSE CaaS Platform 4.0: To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Manager Server 4.1 (ppc64le s390x x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Manager Retail Branch Server 4.1 (x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Manager Proxy 4.1 (x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64 ppc64le s390x x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Server 15-SP1-BCL (x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP4 (aarch64 ppc64le s390x x86_64): wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le s390x x86_64): wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Enterprise Storage7 (aarch64 x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE Enterprise Storage 6 (aarch64 x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 - SUSE CaaS Platform 4.0 (x86_64): libwireshark15-3.6.10-150000.3.78.1 libwireshark15-debuginfo-3.6.10-150000.3.78.1 libwiretap12-3.6.10-150000.3.78.1 libwiretap12-debuginfo-3.6.10-150000.3.78.1 libwsutil13-3.6.10-150000.3.78.1 libwsutil13-debuginfo-3.6.10-150000.3.78.1 wireshark-3.6.10-150000.3.78.1 wireshark-debuginfo-3.6.10-150000.3.78.1 wireshark-debugsource-3.6.10-150000.3.78.1 wireshark-devel-3.6.10-150000.3.78.1 wireshark-ui-qt-3.6.10-150000.3.78.1 wireshark-ui-qt-debuginfo-3.6.10-150000.3.78.1 References: https://www.suse.com/security/cve/CVE-2022-3725.html https://bugzilla.suse.com/1204822 https://bugzilla.suse.com/1206189 https://bugzilla.suse.com/1206190 . The latest SUSE Security Update for wireshark tackles severe vulnerabilities that lead to a dissector malfunction andexcessive memory usage.. SUSE Wireshark Update, Security Patch, Important Security Advisory. . Severity: Important. LinuxSecurity.com Team
Dec 13, 2022
•Important
SuSE
89
security advisoryfedoracriticalFedora 35: 2022-e29665a42b Critical: Wireshark Update with Security Fixes
New version 3.6.2, security fix for CVE-2022-0581, CVE-2022-0582, CVE-2022-0583, CVE-2022-0585, CVE-2022-0586. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2022-e29665a42b 2022-02-24 23:06:26.903797 --------------------------------------------------------------------------------Name : wireshark Product : Fedora 35 Version : 3.6.2 Release : 1.fc35 URL : https://www.wireshark.org/ Summary : Network traffic analyzer Description : Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless (WiFi or Bluetooth) networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. It has many powerful features including a rich display filter language and the ability to reassemble multiple protocol packets in order to, for example, view a complete TCP stream, save the contents of a file which was transferred over HTTP or CIFS, or play back an RTP audio stream. --------------------------------------------------------------------------------Update Information: New version 3.6.2, security fix for CVE-2022-0581, CVE-2022-0582, CVE-2022-0583, CVE-2022-0585, CVE-2022-0586 --------------------------------------------------------------------------------ChangeLog: * Wed Feb 16 2022 Michal Ruprich - 1:3.6.2-1 - New version 3.6.2 - Fix for CVE-2022-0581, CVE-2022-0582, CVE-2022-0583, CVE-2022-0585, CVE-2022-0586 --------------------------------------------------------------------------------References: [ 1 ] Bug #2054047 - CVE-2022-0586 wireshark: RTMPT dissector infinite loop https://bugzilla.redhat.com/show_bug.cgi?id=2054047 [ 2 ] Bug #2054049 - CVE-2022-0585 wireshark: Large loops in multiple dissectors https://bugzilla.redhat.com/show_bug.cgi?id=2054049 [ 3 ] Bug #2054051 - CVE-2022-0583 wireshark: PVFS dissector crash https://bugzilla.redhat.com/show_bug.cgi?id=2054051 [ 4 ] Bug #2054056 - CVE-2022-0582 wireshark: CSN.1 dissector crash https://bugzilla.redhat.com/show_bug.cgi?id=2054056 [ 5 ] Bug #2054059 - CVE-2022-0581 wireshark: CMS dissector crash https://bugzilla.redhat.com/show_bug.cgi?id=2054059 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-e29665a42b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list --
Feb 24, 2022
•Critical
Fedora
100
security advisorymoderate severitydissector crashSUSE: 2021:3938-1 Moderate: Wireshark Dissector Crash Fixes
An update that fixes 8 vulnerabilities is now available. . SUSE Security Update: Security update for wireshark ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:3938-1 Rating: moderate References: #1192830 Cross-References: CVE-2021-39920 CVE-2021-39921 CVE-2021-39922 CVE-2021-39924 CVE-2021-39925 CVE-2021-39926 CVE-2021-39928 CVE-2021-39929 CVSS scores: CVE-2021-39920 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2021-39921 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2021-39922 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2021-39924 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-39924 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2021-39925 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-39925 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2021-39926 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-39926 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2021-39928 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2021-39929 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-39929 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Desktop Applications 15-SP2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP2 ______________________________________________________________________________ An update that fixes 8 vulnerabilities is nowavailable. Description: This update for wireshark fixes the following issues: - Update to Wireshark 3.4.10: - CVE-2021-39920: IPPUSB dissector crash (bsc#1192830). - CVE-2021-39921: Modbus dissector crash (bsc#1192830). - CVE-2021-39922: C12.22 dissector crash (bsc#1192830). - CVE-2021-39924: Bluetooth DHT dissector large loop (bsc#1192830). - CVE-2021-39925: Bluetooth SDP dissector crash (bsc#1192830). - CVE-2021-39926: Bluetooth HCI_ISO dissector crash (bsc#1192830). - CVE-2021-39928: IEEE 802.11 dissector crash (bsc#1192830). - CVE-2021-39929: Bluetooth DHT dissector crash (bsc#1192830). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2021-3938=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP2: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP2-2021-3938=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2021-3938=1 - SUSE Linux Enterprise Module for Basesystem 15-SP2: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-3938=1 Package List: - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le s390x x86_64): wireshark-debuginfo-3.4.10-3.62.1 wireshark-debugsource-3.4.10-3.62.1 wireshark-devel-3.4.10-3.62.1 wireshark-ui-qt-3.4.10-3.62.1 wireshark-ui-qt-debuginfo-3.4.10-3.62.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (aarch64 ppc64le s390x x86_64): wireshark-debuginfo-3.4.10-3.62.1 wireshark-debugsource-3.4.10-3.62.1 wireshark-devel-3.4.10-3.62.1 wireshark-ui-qt-3.4.10-3.62.1 wireshark-ui-qt-debuginfo-3.4.10-3.62.1 - SUSE LinuxEnterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libwireshark14-3.4.10-3.62.1 libwireshark14-debuginfo-3.4.10-3.62.1 libwiretap11-3.4.10-3.62.1 libwiretap11-debuginfo-3.4.10-3.62.1 libwsutil12-3.4.10-3.62.1 libwsutil12-debuginfo-3.4.10-3.62.1 wireshark-3.4.10-3.62.1 wireshark-debuginfo-3.4.10-3.62.1 wireshark-debugsource-3.4.10-3.62.1 - SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x x86_64): libwireshark14-3.4.10-3.62.1 libwireshark14-debuginfo-3.4.10-3.62.1 libwiretap11-3.4.10-3.62.1 libwiretap11-debuginfo-3.4.10-3.62.1 libwsutil12-3.4.10-3.62.1 libwsutil12-debuginfo-3.4.10-3.62.1 wireshark-3.4.10-3.62.1 wireshark-debuginfo-3.4.10-3.62.1 wireshark-debugsource-3.4.10-3.62.1 References: https://www.suse.com/security/cve/CVE-2021-39920.html https://www.suse.com/security/cve/CVE-2021-39921.html https://www.suse.com/security/cve/CVE-2021-39922.html https://www.suse.com/security/cve/CVE-2021-39924.html https://www.suse.com/security/cve/CVE-2021-39925.html https://www.suse.com/security/cve/CVE-2021-39926.html https://www.suse.com/security/cve/CVE-2021-39928.html https://www.suse.com/security/cve/CVE-2021-39929.html https://bugzilla.suse.com/1192830 . The latest SUSE Security Update resolves 8 vulnerabilities in Wireshark, receiving a moderate rating aimed at enhancing overall system stability and safeguarding security.. SUSE Wireshark Update, Linux Security Advisory, Wireshark Fix. . LinuxSecurity.com Team
Dec 06, 2021
SuSE
203
security advisorymoderate threatdissector crashMageia 8: 2021-0518 Moderate: Wireshark Dissector Threats
IPPUSB dissector crash (CVE-2021-39920). Modbus dissector crash (CVE-2021-39921). C12.22 dissector crash (CVE-2021-39922). PNRP dissector large loop (wnpa-sec-2021-11). Bluetooth DHT dissector large loop (CVE-2021-39924). . MGASA-2021-0518 - Updated wireshark packages fix security vulnerability Publication date: 20 Nov 2021 URL: https://advisories.mageia.org/MGASA-2021-0518.html Type: security Affected Mageia releases: 8 CVE: CVE-2021-39920, CVE-2021-39921, CVE-2021-39922, CVE-2021-39924, CVE-2021-39925, CVE-2021-39926, CVE-2021-39928, CVE-2021-39929 IPPUSB dissector crash (CVE-2021-39920). Modbus dissector crash (CVE-2021-39921). C12.22 dissector crash (CVE-2021-39922). PNRP dissector large loop (wnpa-sec-2021-11). Bluetooth DHT dissector large loop (CVE-2021-39924). Bluetooth SDP dissector crash (CVE-2021-39925). Bluetooth HCI_ISO dissector crash (CVE-2021-39926). IEEE 802.11 dissector crash (CVE-2021-39928). Bluetooth DHT dissector crash (CVE-2021-39929). References: - https://bugs.mageia.org/show_bug.cgi?id=29670 - https://www.wireshark.org/security/wnpa-sec-2021-07 - https://www.wireshark.org/security/wnpa-sec-2021-08 - https://www.wireshark.org/security/wnpa-sec-2021-09 - https://www.wireshark.org/security/wnpa-sec-2021-10 - https://www.wireshark.org/security/wnpa-sec-2021-11 - https://www.wireshark.org/security/wnpa-sec-2021-12 - https://www.wireshark.org/security/wnpa-sec-2021-13 - https://www.wireshark.org/security/wnpa-sec-2021-14 - https://www.wireshark.org/security/wnpa-sec-2021-15 - https://www.wireshark.org/docs/relnotes/wireshark-3.4.8.html - https://www.wireshark.org/docs/relnotes/wireshark-3.4.9.html - https://www.wireshark.org/docs/relnotes/wireshark-3.4.10.html - https://www.wireshark.org/news/20210825.html - https://www.wireshark.org/news/20211006.html - https://www.wireshark.org/news/20211117.html - https://www.cve.org/CVERecord?id=CVE-2021-39920 - https://www.cve.org/CVERecord?id=CVE-2021-39921 - https://www.cve.org/CVERecord?id=CVE-2021-39922 -https://www.cve.org/CVERecord?id=CVE-2021-39924 - https://www.cve.org/CVERecord?id=CVE-2021-39925 - https://www.cve.org/CVERecord?id=CVE-2021-39926 - https://www.cve.org/CVERecord?id=CVE-2021-39928 - https://www.cve.org/CVERecord?id=CVE-2021-39929 SRPMS: - 8/core/wireshark-3.4.10-1.mga8 . Mageia 2021-1019 resolves various crashes and infinite loops within Wireshark dissectors, delivering essential security patches for its user base.. Wireshark Update, Mageia Advisories, Dissector Security, Software Vulnerability, Network Protocols Fixes. . Severity: Important. LinuxSecurity.com Team
Nov 20, 2021
•Important
Mageia
202
security advisorymoderatesecurity updateopenSUSE: 2020:1882-1 Moderate: Wireshark Dissector Crashes
An update that fixes four vulnerabilities is now available.. openSUSE Security Update: Security update for wireshark ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:1882-1 Rating: moderate References: #1175204 #1176908 #1176909 #1176910 Cross-References: CVE-2020-17498 CVE-2020-25862 CVE-2020-25863 CVE-2020-25866 Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for wireshark fixes the following issues: - Update to wireshark 3.2.7: * CVE-2020-25863: MIME Multipart dissector crash (bsc#1176908) * CVE-2020-25862: TCP dissector crash (bsc#1176909) * CVE-2020-25866: BLIP dissector crash (bsc#1176910) * CVE-2020-17498: Kafka dissector crash (bsc#1175204) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2020-1882=1 Package List: - openSUSE Leap 15.2 (i586 x86_64): libwireshark13-3.2.7-lp152.2.6.1 libwireshark13-debuginfo-3.2.7-lp152.2.6.1 libwiretap10-3.2.7-lp152.2.6.1 libwiretap10-debuginfo-3.2.7-lp152.2.6.1 libwsutil11-3.2.7-lp152.2.6.1 libwsutil11-debuginfo-3.2.7-lp152.2.6.1 wireshark-3.2.7-lp152.2.6.1 wireshark-debuginfo-3.2.7-lp152.2.6.1 wireshark-debugsource-3.2.7-lp152.2.6.1 wireshark-devel-3.2.7-lp152.2.6.1 wireshark-ui-qt-3.2.7-lp152.2.6.1 wireshark-ui-qt-debuginfo-3.2.7-lp152.2.6.1 References: https://www.suse.com/security/cve/CVE-2020-17498.html https://www.suse.com/security/cve/CVE-2020-25862.html https://www.suse.com/security/cve/CVE-2020-25863.html https://www.suse.com/security/cve/CVE-2020-25866.html https://bugzilla.suse.com/1175204 https://bugzilla.suse.com/1176908 https://bugzilla.suse.com/1176909 https://bugzilla.suse.com/1176910 -- . A new patch for Fedora resolves five significant vulnerabilities in vlc, boosting overall system reliability and protection.. wireshark update, openSUSE security, dissecting issues, moderate patch. . LinuxSecurity.com Team
Nov 09, 2020
OpenSUSE
202
security advisorymoderatedissector crashopenSUSE: 2020:1878-1 Moderate: Wireshark Dissector Crash Fixes
An update that fixes four vulnerabilities is now available.. openSUSE Security Update: Security update for wireshark ______________________________________________________________________________ Announcement ID: openSUSE-SU-2020:1878-1 Rating: moderate References: #1175204 #1176908 #1176909 #1176910 Cross-References: CVE-2020-17498 CVE-2020-25862 CVE-2020-25863 CVE-2020-25866 Affected Products: openSUSE Leap 15.1 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for wireshark fixes the following issues: - Update to wireshark 3.2.7: * CVE-2020-25863: MIME Multipart dissector crash (bsc#1176908) * CVE-2020-25862: TCP dissector crash (bsc#1176909) * CVE-2020-25866: BLIP dissector crash (bsc#1176910) * CVE-2020-17498: Kafka dissector crash (bsc#1175204) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2020-1878=1 Package List: - openSUSE Leap 15.1 (x86_64): libwireshark13-3.2.7-lp151.2.15.1 libwireshark13-debuginfo-3.2.7-lp151.2.15.1 libwiretap10-3.2.7-lp151.2.15.1 libwiretap10-debuginfo-3.2.7-lp151.2.15.1 libwsutil11-3.2.7-lp151.2.15.1 libwsutil11-debuginfo-3.2.7-lp151.2.15.1 wireshark-3.2.7-lp151.2.15.1 wireshark-debuginfo-3.2.7-lp151.2.15.1 wireshark-debugsource-3.2.7-lp151.2.15.1 wireshark-devel-3.2.7-lp151.2.15.1 wireshark-ui-qt-3.2.7-lp151.2.15.1 wireshark-ui-qt-debuginfo-3.2.7-lp151.2.15.1 References: https://www.suse.com/security/cve/CVE-2020-17498.html https://www.suse.com/security/cve/CVE-2020-25862.html https://www.suse.com/security/cve/CVE-2020-25863.html https://www.suse.com/security/cve/CVE-2020-25866.html https://bugzilla.suse.com/1175204 https://bugzilla.suse.com/1176908 https://bugzilla.suse.com/1176909 https://bugzilla.suse.com/1176910 -- . Resolutions for various Wireshark challenges in the openSUSE Security Update: Announcement ID openSUSE-SU-2020:1878-1.. openSUSE Update, wireshark Crash Fixes, Security Advisory. . LinuxSecurity.com Team
Nov 08, 2020
OpenSUSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!