Detections
Analytics

SuSE 11.3 Security Update : wireshark (SAT Patch Number 9745)

medium Nessus Plugin ID 77960

Language:

Synopsis

The remote SuSE 11 host is missing a security update.

Description

The wireshark package was upgraded to 1.10.10 from 1.8.x as 1.8 was discontinued.

This update fixes vulnerabilities that could allow an attacker to crash Wireshark or make it become unresponsive by sending specific packets onto the network or have them loaded via a capture file while the dissectors are running. It also contains a number of other bug fixes.

 - RTP dissector crash. (wnpa-sec-2014-12 CVE-2014-6421 / CVE-2014-6422)

 - MEGACO dissector infinite loop. (wnpa-sec-2014-13 CVE-2014-6423)

 - Netflow dissector crash. (wnpa-sec-2014-14 CVE-2014-6424)

 - RTSP dissector crash. (wnpa-sec-2014-17 CVE-2014-6427)

 - SES dissector crash. (wnpa-sec-2014-18 CVE-2014-6428)

 - Sniffer file parser crash. (wnpa-sec-2014-19 CVE-2014-6429 / CVE-2014-6430 / CVE-2014-6431 / CVE-2014-6432)

 - The Catapult DCT2000 and IrDA dissectors could underrun a buffer. (wnpa-sec-2014-08 CVE-2014-5161 / CVE-2014-5162, bnc#889901)

 - The GSM Management dissector could crash.
 (wnpa-sec-2014-09 CVE-2014-5163, bnc#889906)

 - The RLC dissector could crash. (wnpa-sec-2014-10 CVE-2014-5164, bnc#889900)

 - The ASN.1 BER dissector could crash. (wnpa-sec-2014-11 CVE-2014-5165, bnc#889899) Further bug fixes as listed in:
 https://www.wireshark.org/docs/relnotes/wireshark-1.10.1 0.html and https://www.wireshark.org/docs/relnotes/wireshark-1.10.9 .html .

Solution

Apply SAT patch number 9745.

See Also

https://bugzilla.novell.com/show_bug.cgi?id=889854

https://bugzilla.novell.com/show_bug.cgi?id=889899

https://bugzilla.novell.com/show_bug.cgi?id=889900

https://bugzilla.novell.com/show_bug.cgi?id=889901

https://bugzilla.novell.com/show_bug.cgi?id=889906

https://bugzilla.novell.com/show_bug.cgi?id=897055

http://support.novell.com/security/cve/CVE-2014-5161.html

http://support.novell.com/security/cve/CVE-2014-5162.html

http://support.novell.com/security/cve/CVE-2014-5163.html

http://support.novell.com/security/cve/CVE-2014-5164.html

http://support.novell.com/security/cve/CVE-2014-5165.html

http://support.novell.com/security/cve/CVE-2014-6421.html

http://support.novell.com/security/cve/CVE-2014-6422.html

http://support.novell.com/security/cve/CVE-2014-6423.html

http://support.novell.com/security/cve/CVE-2014-6424.html

http://support.novell.com/security/cve/CVE-2014-6427.html

http://support.novell.com/security/cve/CVE-2014-6428.html

http://support.novell.com/security/cve/CVE-2014-6429.html

http://support.novell.com/security/cve/CVE-2014-6430.html

http://support.novell.com/security/cve/CVE-2014-6431.html

http://support.novell.com/security/cve/CVE-2014-6432.html

Plugin Details

Severity: Medium

ID: 77960

File Name: suse_11_wireshark-140923.nasl

Version: 1.5

Type: local

Agent: unix

Published: 9/29/2014

Updated: 1/19/2021

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/o:novell:suse_linux:11, p-cpe:/a:novell:suse_linux:11:wireshark

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 9/23/2014

Reference Information

CVE: CVE-2014-5161, CVE-2014-5162, CVE-2014-5163, CVE-2014-5164, CVE-2014-5165, CVE-2014-6421, CVE-2014-6422, CVE-2014-6423, CVE-2014-6424, CVE-2014-6427, CVE-2014-6428, CVE-2014-6429, CVE-2014-6430, CVE-2014-6431, CVE-2014-6432