Security update for wireshark SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2020:0362-1 Final 1 1 2020-03-19T19:19:35Z current 2020-03-19T19:19:35Z 2020-03-19T19:19:35Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for wireshark This update for wireshark and libmaxminddb fixes the following issues: Update wireshark to new major version 3.2.2 and introduce libmaxminddb for GeoIP support (bsc#1156288). New features include: - Added support for 111 new protocols, including WireGuard, LoRaWAN, TPM 2.0, 802.11ax and QUIC - Improved support for existing protocols, like HTTP/2 - Improved analytics and usability functionalities This update was imported from the SUSE:SLE-15:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-2020-362 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ E-Mail link for openSUSE-SU-2020:0362-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1093733 SUSE Bug 1093733 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 https://bugzilla.suse.com/1101776 SUSE Bug 1101776 https://bugzilla.suse.com/1101777 SUSE Bug 1101777 https://bugzilla.suse.com/1101786 SUSE Bug 1101786 https://bugzilla.suse.com/1101788 SUSE Bug 1101788 https://bugzilla.suse.com/1101791 SUSE Bug 1101791 https://bugzilla.suse.com/1101794 SUSE Bug 1101794 https://bugzilla.suse.com/1101800 SUSE Bug 1101800 https://bugzilla.suse.com/1101802 SUSE Bug 1101802 https://bugzilla.suse.com/1101804 SUSE Bug 1101804 https://bugzilla.suse.com/1101810 SUSE Bug 1101810 https://bugzilla.suse.com/1106514 SUSE Bug 1106514 https://bugzilla.suse.com/1111647 SUSE Bug 1111647 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 https://bugzilla.suse.com/1121231 SUSE Bug 1121231 https://bugzilla.suse.com/1121232 SUSE Bug 1121232 https://bugzilla.suse.com/1121233 SUSE Bug 1121233 https://bugzilla.suse.com/1121234 SUSE Bug 1121234 https://bugzilla.suse.com/1121235 SUSE Bug 1121235 https://bugzilla.suse.com/1127367 SUSE Bug 1127367 https://bugzilla.suse.com/1127369 SUSE Bug 1127369 https://bugzilla.suse.com/1127370 SUSE Bug 1127370 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 https://bugzilla.suse.com/1136021 SUSE Bug 1136021 https://bugzilla.suse.com/1141980 SUSE Bug 1141980 https://bugzilla.suse.com/1150690 SUSE Bug 1150690 https://bugzilla.suse.com/1156288 SUSE Bug 1156288 https://bugzilla.suse.com/1158505 SUSE Bug 1158505 https://bugzilla.suse.com/1161052 SUSE Bug 1161052 https://bugzilla.suse.com/1165241 SUSE Bug 1165241 https://bugzilla.suse.com/1165710 SUSE Bug 1165710 https://bugzilla.suse.com/957624 SUSE Bug 957624 https://www.suse.com/security/cve/CVE-2018-11354/ SUSE CVE CVE-2018-11354 page https://www.suse.com/security/cve/CVE-2018-11355/ SUSE CVE CVE-2018-11355 page https://www.suse.com/security/cve/CVE-2018-11356/ SUSE CVE CVE-2018-11356 page https://www.suse.com/security/cve/CVE-2018-11357/ SUSE CVE CVE-2018-11357 page https://www.suse.com/security/cve/CVE-2018-11358/ SUSE CVE CVE-2018-11358 page https://www.suse.com/security/cve/CVE-2018-11359/ SUSE CVE CVE-2018-11359 page https://www.suse.com/security/cve/CVE-2018-11360/ SUSE CVE CVE-2018-11360 page https://www.suse.com/security/cve/CVE-2018-11361/ SUSE CVE CVE-2018-11361 page https://www.suse.com/security/cve/CVE-2018-11362/ SUSE CVE CVE-2018-11362 page https://www.suse.com/security/cve/CVE-2018-12086/ SUSE CVE CVE-2018-12086 page https://www.suse.com/security/cve/CVE-2018-14339/ SUSE CVE CVE-2018-14339 page https://www.suse.com/security/cve/CVE-2018-14340/ SUSE CVE CVE-2018-14340 page https://www.suse.com/security/cve/CVE-2018-14341/ SUSE CVE CVE-2018-14341 page https://www.suse.com/security/cve/CVE-2018-14342/ SUSE CVE CVE-2018-14342 page https://www.suse.com/security/cve/CVE-2018-14343/ SUSE CVE CVE-2018-14343 page https://www.suse.com/security/cve/CVE-2018-14344/ SUSE CVE CVE-2018-14344 page https://www.suse.com/security/cve/CVE-2018-14367/ SUSE CVE CVE-2018-14367 page https://www.suse.com/security/cve/CVE-2018-14368/ SUSE CVE CVE-2018-14368 page https://www.suse.com/security/cve/CVE-2018-14369/ SUSE CVE CVE-2018-14369 page https://www.suse.com/security/cve/CVE-2018-14370/ SUSE CVE CVE-2018-14370 page https://www.suse.com/security/cve/CVE-2018-16056/ SUSE CVE CVE-2018-16056 page https://www.suse.com/security/cve/CVE-2018-16057/ SUSE CVE CVE-2018-16057 page https://www.suse.com/security/cve/CVE-2018-16058/ SUSE CVE CVE-2018-16058 page https://www.suse.com/security/cve/CVE-2018-18225/ SUSE CVE CVE-2018-18225 page https://www.suse.com/security/cve/CVE-2018-18226/ SUSE CVE CVE-2018-18226 page https://www.suse.com/security/cve/CVE-2018-18227/ SUSE CVE CVE-2018-18227 page https://www.suse.com/security/cve/CVE-2018-19622/ SUSE CVE CVE-2018-19622 page https://www.suse.com/security/cve/CVE-2018-19623/ SUSE CVE CVE-2018-19623 page https://www.suse.com/security/cve/CVE-2018-19624/ SUSE CVE CVE-2018-19624 page https://www.suse.com/security/cve/CVE-2018-19625/ SUSE CVE CVE-2018-19625 page https://www.suse.com/security/cve/CVE-2018-19626/ SUSE CVE CVE-2018-19626 page https://www.suse.com/security/cve/CVE-2018-19627/ SUSE CVE CVE-2018-19627 page https://www.suse.com/security/cve/CVE-2018-19628/ SUSE CVE CVE-2018-19628 page https://www.suse.com/security/cve/CVE-2019-10894/ SUSE CVE CVE-2019-10894 page https://www.suse.com/security/cve/CVE-2019-10895/ SUSE CVE CVE-2019-10895 page https://www.suse.com/security/cve/CVE-2019-10896/ SUSE CVE CVE-2019-10896 page https://www.suse.com/security/cve/CVE-2019-10897/ SUSE CVE CVE-2019-10897 page https://www.suse.com/security/cve/CVE-2019-10898/ SUSE CVE CVE-2019-10898 page https://www.suse.com/security/cve/CVE-2019-10899/ SUSE CVE CVE-2019-10899 page https://www.suse.com/security/cve/CVE-2019-10900/ SUSE CVE CVE-2019-10900 page https://www.suse.com/security/cve/CVE-2019-10901/ SUSE CVE CVE-2019-10901 page https://www.suse.com/security/cve/CVE-2019-10902/ SUSE CVE CVE-2019-10902 page https://www.suse.com/security/cve/CVE-2019-10903/ SUSE CVE CVE-2019-10903 page https://www.suse.com/security/cve/CVE-2019-13619/ SUSE CVE CVE-2019-13619 page https://www.suse.com/security/cve/CVE-2019-16319/ SUSE CVE CVE-2019-16319 page https://www.suse.com/security/cve/CVE-2019-19553/ SUSE CVE CVE-2019-19553 page https://www.suse.com/security/cve/CVE-2019-5716/ SUSE CVE CVE-2019-5716 page https://www.suse.com/security/cve/CVE-2019-5717/ SUSE CVE CVE-2019-5717 page https://www.suse.com/security/cve/CVE-2019-5718/ SUSE CVE CVE-2019-5718 page https://www.suse.com/security/cve/CVE-2019-5719/ SUSE CVE CVE-2019-5719 page https://www.suse.com/security/cve/CVE-2019-5721/ SUSE CVE CVE-2019-5721 page https://www.suse.com/security/cve/CVE-2019-9208/ SUSE CVE CVE-2019-9208 page https://www.suse.com/security/cve/CVE-2019-9209/ SUSE CVE CVE-2019-9209 page https://www.suse.com/security/cve/CVE-2019-9214/ SUSE CVE CVE-2019-9214 page https://www.suse.com/security/cve/CVE-2020-7044/ SUSE CVE CVE-2020-7044 page https://www.suse.com/security/cve/CVE-2020-9428/ SUSE CVE CVE-2020-9428 page https://www.suse.com/security/cve/CVE-2020-9429/ SUSE CVE CVE-2020-9429 page https://www.suse.com/security/cve/CVE-2020-9430/ SUSE CVE CVE-2020-9430 page https://www.suse.com/security/cve/CVE-2020-9431/ SUSE CVE CVE-2020-9431 page openSUSE Leap 15.1 libmaxminddb-devel-1.4.2-lp151.3.3.1 libmaxminddb0-1.4.2-lp151.3.3.1 libmaxminddb0-32bit-1.4.2-lp151.3.3.1 libspandsp2-0.0.6-lp151.3.3.1 libspandsp2-32bit-0.0.6-lp151.3.3.1 libwireshark13-3.2.2-lp151.2.9.1 libwiretap10-3.2.2-lp151.2.9.1 libwsutil11-3.2.2-lp151.2.9.1 mmdblookup-1.4.2-lp151.3.3.1 spandsp-devel-0.0.6-lp151.3.3.1 spandsp-doc-0.0.6-lp151.3.3.1 wireshark-3.2.2-lp151.2.9.1 wireshark-devel-3.2.2-lp151.2.9.1 wireshark-ui-qt-3.2.2-lp151.2.9.1 libmaxminddb-devel-1.4.2-lp151.3.3.1 as a component of openSUSE Leap 15.1 libmaxminddb0-1.4.2-lp151.3.3.1 as a component of openSUSE Leap 15.1 libmaxminddb0-32bit-1.4.2-lp151.3.3.1 as a component of openSUSE Leap 15.1 libspandsp2-0.0.6-lp151.3.3.1 as a component of openSUSE Leap 15.1 libspandsp2-32bit-0.0.6-lp151.3.3.1 as a component of openSUSE Leap 15.1 libwireshark13-3.2.2-lp151.2.9.1 as a component of openSUSE Leap 15.1 libwiretap10-3.2.2-lp151.2.9.1 as a component of openSUSE Leap 15.1 libwsutil11-3.2.2-lp151.2.9.1 as a component of openSUSE Leap 15.1 mmdblookup-1.4.2-lp151.3.3.1 as a component of openSUSE Leap 15.1 spandsp-devel-0.0.6-lp151.3.3.1 as a component of openSUSE Leap 15.1 spandsp-doc-0.0.6-lp151.3.3.1 as a component of openSUSE Leap 15.1 wireshark-3.2.2-lp151.2.9.1 as a component of openSUSE Leap 15.1 wireshark-devel-3.2.2-lp151.2.9.1 as a component of openSUSE Leap 15.1 wireshark-ui-qt-3.2.2-lp151.2.9.1 as a component of openSUSE Leap 15.1 In Wireshark 2.6.0, the IEEE 1905.1a dissector could crash. This was addressed in epan/dissectors/packet-ieee1905.c by making a certain correction to string handling. CVE-2018-11354 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-11354.html CVE-2018-11354 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, the RTCP dissector could crash. This was addressed in epan/dissectors/packet-rtcp.c by avoiding a buffer overflow for packet status chunks. CVE-2018-11355 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-11355.html CVE-2018-11355 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the DNS dissector could crash. This was addressed in epan/dissectors/packet-dns.c by avoiding a NULL pointer dereference for an empty name in an SRV record. CVE-2018-11356 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-11356.html CVE-2018-11356 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LTP dissector and other dissectors could consume excessive memory. This was addressed in epan/tvbuff.c by rejecting negative lengths. CVE-2018-11357 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-11357.html CVE-2018-11357 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the Q.931 dissector could crash. This was addressed in epan/dissectors/packet-q931.c by avoiding a use-after-free after a malformed packet prevented certain cleanup. CVE-2018-11358 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-11358.html CVE-2018-11358 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in epan/proto.c by avoiding a NULL pointer dereference. CVE-2018-11359 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-11359.html CVE-2018-11359 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the GSM A DTAP dissector could crash. This was addressed in epan/dissectors/packet-gsm_a_dtap.c by fixing an off-by-one error that caused a buffer overflow. CVE-2018-11360 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-11360.html CVE-2018-11360 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/dot11decrypt.c by avoiding a buffer overflow during FTE processing in Dot11DecryptTDLSDeriveKey. CVE-2018-11361 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-11361.html CVE-2018-11361 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by avoiding a buffer over-read upon encountering a missing '\0' character. CVE-2018-11362 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-11362.html CVE-2018-11362 https://bugzilla.suse.com/1094301 SUSE Bug 1094301 Buffer overflow in OPC UA applications allows remote attackers to trigger a stack overflow with carefully structured requests. CVE-2018-12086 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-12086.html CVE-2018-12086 https://bugzilla.suse.com/1111647 SUSE Bug 1111647 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the MMSE dissector could go into an infinite loop. This was addressed in epan/proto.c by adding offset and length validation. CVE-2018-14339 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14339.html CVE-2018-14339 https://bugzilla.suse.com/1101810 SUSE Bug 1101810 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, dissectors that support zlib decompression could crash. This was addressed in epan/tvbuff_zlib.c by rejecting negative lengths to avoid a buffer over-read. CVE-2018-14340 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14340.html CVE-2018-14340 https://bugzilla.suse.com/1101804 SUSE Bug 1101804 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the DICOM dissector could go into a large or infinite loop. This was addressed in epan/dissectors/packet-dcm.c by preventing an offset overflow. CVE-2018-14341 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14341.html CVE-2018-14341 https://bugzilla.suse.com/1101776 SUSE Bug 1101776 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the BGP protocol dissector could go into a large loop. This was addressed in epan/dissectors/packet-bgp.c by validating Path Attribute lengths. CVE-2018-14342 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14342.html CVE-2018-14342 https://bugzilla.suse.com/1101777 SUSE Bug 1101777 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ASN.1 BER dissector could crash. This was addressed in epan/dissectors/packet-ber.c by ensuring that length values do not exceed the maximum signed integer. CVE-2018-14343 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14343.html CVE-2018-14343 https://bugzilla.suse.com/1101786 SUSE Bug 1101786 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the ISMP dissector could crash. This was addressed in epan/dissectors/packet-ismp.c by validating the IPX address length to avoid a buffer over-read. CVE-2018-14344 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14344.html CVE-2018-14344 https://bugzilla.suse.com/1101788 SUSE Bug 1101788 In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the CoAP protocol dissector could crash. This was addressed in epan/dissectors/packet-coap.c by properly checking for a NULL condition. CVE-2018-14367 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14367.html CVE-2018-14367 https://bugzilla.suse.com/1101791 SUSE Bug 1101791 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the Bazaar protocol dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-bzr.c by properly handling items that are too long. CVE-2018-14368 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14368.html CVE-2018-14368 https://bugzilla.suse.com/1101794 SUSE Bug 1101794 In Wireshark 2.6.0 to 2.6.1, 2.4.0 to 2.4.7, and 2.2.0 to 2.2.15, the HTTP2 dissector could crash. This was addressed in epan/dissectors/packet-http2.c by verifying that header data was found before proceeding to header decompression. CVE-2018-14369 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14369.html CVE-2018-14369 https://bugzilla.suse.com/1101800 SUSE Bug 1101800 In Wireshark 2.6.0 to 2.6.1 and 2.4.0 to 2.4.7, the IEEE 802.11 protocol dissector could crash. This was addressed in epan/crypt/airpdcap.c via bounds checking that prevents a buffer over-read. CVE-2018-14370 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 low 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-14370.html CVE-2018-14370 https://bugzilla.suse.com/1101802 SUSE Bug 1101802 In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth Attribute Protocol dissector could crash. This was addressed in epan/dissectors/packet-btatt.c by verifying that a dissector for a specific UUID exists. CVE-2018-16056 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-16056.html CVE-2018-16056 https://bugzilla.suse.com/1106514 SUSE Bug 1106514 In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Radiotap dissector could crash. This was addressed in epan/dissectors/packet-ieee80211-radiotap-iter.c by validating iterator operations. CVE-2018-16057 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-16057.html CVE-2018-16057 https://bugzilla.suse.com/1106514 SUSE Bug 1106514 In Wireshark 2.6.0 to 2.6.2, 2.4.0 to 2.4.8, and 2.2.0 to 2.2.16, the Bluetooth AVDTP dissector could crash. This was addressed in epan/dissectors/packet-btavdtp.c by properly initializing a data structure. CVE-2018-16058 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-16058.html CVE-2018-16058 https://bugzilla.suse.com/1106514 SUSE Bug 1106514 In Wireshark 2.6.0 to 2.6.3, the CoAP dissector could crash. This was addressed in epan/dissectors/packet-coap.c by ensuring that the piv length is correctly computed. CVE-2018-18225 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-18225.html CVE-2018-18225 https://bugzilla.suse.com/1111647 SUSE Bug 1111647 In Wireshark 2.6.0 to 2.6.3, the Steam IHS Discovery dissector could consume system memory. This was addressed in epan/dissectors/packet-steam-ihs-discovery.c by changing the memory-management approach. CVE-2018-18226 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-18226.html CVE-2018-18226 https://bugzilla.suse.com/1111647 SUSE Bug 1111647 In Wireshark 2.6.0 to 2.6.3 and 2.4.0 to 2.4.9, the MS-WSP protocol dissector could crash. This was addressed in epan/dissectors/packet-mswsp.c by properly handling NULL return values. CVE-2018-18227 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-18227.html CVE-2018-18227 https://bugzilla.suse.com/1111647 SUSE Bug 1111647 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows. CVE-2018-19622 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-19622.html CVE-2018-19622 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values. CVE-2018-19623 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-19623.html CVE-2018-19623 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference. CVE-2018-19624 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-19624.html CVE-2018-19624 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read. CVE-2018-19625 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-19625.html CVE-2018-19625 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination. CVE-2018-19626 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-19626.html CVE-2018-19626 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary. CVE-2018-19627 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-19627.html CVE-2018-19627 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error. CVE-2018-19628 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2018-19628.html CVE-2018-19628 https://bugzilla.suse.com/1117740 SUSE Bug 1117740 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API dissector could crash. This was addressed in epan/dissectors/packet-gssapi.c by ensuring that a valid dissector is called. CVE-2019-10894 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10894.html CVE-2019-10894 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler file parser could crash. This was addressed in wiretap/netscaler.c by improving data validation. CVE-2019-10895 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10895.html CVE-2019-10895 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DOF dissector could crash. This was addressed in epan/dissectors/packet-dof.c by properly handling generated IID and OID bytes. CVE-2019-10896 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10896.html CVE-2019-10896 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 3.0.0, the IEEE 802.11 dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-ieee80211.c by detecting cases in which the bit offset does not advance. CVE-2019-10897 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10897.html CVE-2019-10897 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 In Wireshark 3.0.0, the GSUP dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-gsm_gsup.c by rejecting an invalid Information Element length. CVE-2019-10898 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10898.html CVE-2019-10898 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC dissector could crash. This was addressed in epan/dissectors/packet-srvloc.c by preventing a heap-based buffer under-read. CVE-2019-10899 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10899.html CVE-2019-10899 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 3.0.0, the Rbm dissector could go into an infinite loop. This was addressed in epan/dissectors/file-rbm.c by handling unknown object types safely. CVE-2019-10900 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10900.html CVE-2019-10900 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS dissector could crash. This was addressed in epan/dissectors/packet-ldss.c by handling file digests properly. CVE-2019-10901 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10901.html CVE-2019-10901 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 3.0.0, the TSDNS dissector could crash. This was addressed in epan/dissectors/packet-tsdns.c by splitting strings safely. CVE-2019-10902 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10902.html CVE-2019-10902 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SPOOLSS dissector could crash. This was addressed in epan/dissectors/packet-dcerpc-spoolss.c by adding a boundary check. CVE-2019-10903 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-10903.html CVE-2019-10903 https://bugzilla.suse.com/1131941 SUSE Bug 1131941 https://bugzilla.suse.com/1131943 SUSE Bug 1131943 https://bugzilla.suse.com/1131945 SUSE Bug 1131945 In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer increments. CVE-2019-13619 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-13619.html CVE-2019-13619 https://bugzilla.suse.com/1141980 SUSE Bug 1141980 In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugins/epan/gryphon/packet-gryphon.c by checking for a message length of zero. CVE-2019-16319 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-16319.html CVE-2019-16319 https://bugzilla.suse.com/1150690 SUSE Bug 1150690 In Wireshark 3.0.0 to 3.0.6 and 2.6.0 to 2.6.12, the CMS dissector could crash. This was addressed in epan/dissectors/asn1/cms/packet-cms-template.c by ensuring that an object identifier is set to NULL after a ContentInfo dissection. CVE-2019-19553 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-19553.html CVE-2019-19553 https://bugzilla.suse.com/1158505 SUSE Bug 1158505 In Wireshark 2.6.0 to 2.6.5, the 6LoWPAN dissector could crash. This was addressed in epan/dissectors/packet-6lowpan.c by avoiding use of a TVB before its creation. CVE-2019-5716 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-5716.html CVE-2019-5716 https://bugzilla.suse.com/1121231 SUSE Bug 1121231 In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the P_MUL dissector could crash. This was addressed in epan/dissectors/packet-p_mul.c by rejecting the invalid sequence number of zero. CVE-2019-5717 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-5717.html CVE-2019-5717 https://bugzilla.suse.com/1121232 SUSE Bug 1121232 In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in epan/charsets.c by adding a get_t61_string length check. CVE-2019-5718 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-5718.html CVE-2019-5718 https://bugzilla.suse.com/1121233 SUSE Bug 1121233 In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was addressed in epan/dissectors/packet-isakmp.c by properly handling the case of a missing decryption data block. CVE-2019-5719 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-5719.html CVE-2019-5719 https://bugzilla.suse.com/1121234 SUSE Bug 1121234 In Wireshark 2.4.0 to 2.4.11, the ENIP dissector could crash. This was addressed in epan/dissectors/packet-enip.c by changing the memory-management approach so that a use-after-free is avoided. CVE-2019-5721 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-5721.html CVE-2019-5721 https://bugzilla.suse.com/1121235 SUSE Bug 1121235 In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the TCAP dissector could crash. This was addressed in epan/dissectors/asn1/tcap/tcap.cnf by avoiding NULL pointer dereferences. CVE-2019-9208 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-9208.html CVE-2019-9208 https://bugzilla.suse.com/1127370 SUSE Bug 1127370 In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the ASN.1 BER and related dissectors could crash. This was addressed in epan/dissectors/packet-ber.c by preventing a buffer overflow associated with excessive digits in time values. CVE-2019-9209 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-9209.html CVE-2019-9209 https://bugzilla.suse.com/1127369 SUSE Bug 1127369 In Wireshark 2.4.0 to 2.4.12 and 2.6.0 to 2.6.6, the RPCAP dissector could crash. This was addressed in epan/dissectors/packet-rpcap.c by avoiding an attempted dereference of a NULL conversation. CVE-2019-9214 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2019-9214.html CVE-2019-9214 https://bugzilla.suse.com/1127367 SUSE Bug 1127367 In Wireshark 3.2.x before 3.2.1, the WASSP dissector could crash. This was addressed in epan/dissectors/packet-wassp.c by using >= and <= to resolve off-by-one errors. CVE-2020-7044 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2020-7044.html CVE-2020-7044 https://bugzilla.suse.com/1161052 SUSE Bug 1161052 In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the EAP dissector could crash. This was addressed in epan/dissectors/packet-eap.c by using more careful sscanf parsing. CVE-2020-9428 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2020-9428.html CVE-2020-9428 https://bugzilla.suse.com/1165241 SUSE Bug 1165241 In Wireshark 3.2.0 to 3.2.1, the WireGuard dissector could crash. This was addressed in epan/dissectors/packet-wireguard.c by handling the situation where a certain data structure intentionally has a NULL value. CVE-2020-9429 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2020-9429.html CVE-2020-9429 https://bugzilla.suse.com/1165241 SUSE Bug 1165241 In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the WiMax DLMAP dissector could crash. This was addressed in plugins/epan/wimax/msg_dlmap.c by validating a length field. CVE-2020-9430 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2020-9430.html CVE-2020-9430 https://bugzilla.suse.com/1165241 SUSE Bug 1165241 In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the LTE RRC dissector could leak memory. This was addressed in epan/dissectors/packet-lte-rrc.c by adjusting certain append operations. CVE-2020-9431 openSUSE Leap 15.1:libmaxminddb-devel-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libmaxminddb0-32bit-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libspandsp2-32bit-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:libwireshark13-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwiretap10-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:libwsutil11-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:mmdblookup-1.4.2-lp151.3.3.1 openSUSE Leap 15.1:spandsp-devel-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:spandsp-doc-0.0.6-lp151.3.3.1 openSUSE Leap 15.1:wireshark-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-devel-3.2.2-lp151.2.9.1 openSUSE Leap 15.1:wireshark-ui-qt-3.2.2-lp151.2.9.1 important 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5IUFGOOBYOJSD6ELATYP2KAV4TMLYPWB/ https://www.suse.com/security/cve/CVE-2020-9431.html CVE-2020-9431 https://bugzilla.suse.com/1165241 SUSE Bug 1165241