OVAL Reference oval:org.opensuse.security:def:56459

Oval Definition:

oval:org.opensuse.security:def:56459

Revision Date:	2020-12-01	Version:	1
Title:	Security update for wireshark (Moderate)
Description:	This update for wireshark to version 2.2.9 fixes several issues. These security issues were fixed: - CVE-2017-13767: The MSDP dissector could have gone into an infinite loop. This was addressed by adding length validation (bsc#1056248). - CVE-2017-13766: The Profinet I/O dissector could have crash with an out-of-bounds write. This was addressed by adding string validation (bsc#1056249). - CVE-2017-13765: The IrCOMM dissector had a buffer over-read and application crash. This was addressed by adding length validation (bsc#1056251). - CVE-2017-9766: PROFINET IO data with a high recursion depth allowed remote attackers to cause a denial of service (stack exhaustion) in the dissect_IODWriteReq function (bsc#1045341). - CVE-2017-9617: Deeply nested DAAP data may have cause stack exhaustion (uncontrolled recursion) in the dissect_daap_one_tag function in the DAAP dissector (bsc#1044417).
Family:	unix	Class:	patch
Status:		Reference(s):	1006592 1017646 1044329 1044417 1045341 1047356 1054849 1056248 1056249 1056251 1056277 1086690 1087820 1094150 1094154 1094161 1094204 1094237 1095730 1095812 1095813 1098998 1103411 1106119 1107832 1108963 1110233 1131060 1171252 1171254 1173144 CVE-2010-1205 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-2895 CVE-2011-3026 CVE-2011-3048 CVE-2011-3200 CVE-2011-3328 CVE-2011-3389 CVE-2011-3464 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2012-3386 CVE-2013-1752 CVE-2013-4238 CVE-2013-4758 CVE-2013-5653 CVE-2013-6370 CVE-2013-6371 CVE-2014-2667 CVE-2014-3634 CVE-2014-3683 CVE-2014-4650 CVE-2016-10087 CVE-2017-10928 CVE-2017-13758 CVE-2017-13765 CVE-2017-13766 CVE-2017-13767 CVE-2017-18269 CVE-2017-18271 CVE-2017-2810 CVE-2017-9617 CVE-2017-9766 CVE-2018-10804 CVE-2018-10805 CVE-2018-10858 CVE-2018-11236 CVE-2018-11237 CVE-2018-11251 CVE-2018-11655 CVE-2018-12359 CVE-2018-12360 CVE-2018-12362 CVE-2018-12363 CVE-2018-12364 CVE-2018-12365 CVE-2018-12366 CVE-2018-12368 CVE-2018-14633 CVE-2018-14634 CVE-2018-17182 CVE-2018-5156 CVE-2018-5188 CVE-2018-9133 CVE-2019-3880 CVE-2020-12653 CVE-2020-12654 CVE-2020-8163 SUSE-SU-2016:2817-1 SUSE-SU-2017:0853-1 SUSE-SU-2017:2105-1 SUSE-SU-2017:2555-1 SUSE-SU-2018:1562-1 SUSE-SU-2018:1851-1 SUSE-SU-2018:2320-1 SUSE-SU-2018:2322-1 SUSE-SU-2019:1195-1 SUSE-SU-2020:2140-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information curl-7.59.0-lp150.1 is installed OR libcurl4-7.59.0-lp150.1 is installed OR libcurl4-32bit-7.59.0-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information graphviz-2.40.1-lp151.6.3 is installed OR graphviz-addons-2.40.1-lp151.6.3 is installed OR graphviz-devel-2.40.1-lp151.6.3 is installed OR graphviz-doc-2.40.1-lp151.6.3 is installed OR graphviz-gd-2.40.1-lp151.6.3 is installed OR graphviz-gnome-2.40.1-lp151.6.3 is installed OR graphviz-guile-2.40.1-lp151.6.3 is installed OR graphviz-gvedit-2.40.1-lp151.6.3 is installed OR graphviz-java-2.40.1-lp151.6.3 is installed OR graphviz-lua-2.40.1-lp151.6.3 is installed OR graphviz-perl-2.40.1-lp151.6.3 is installed OR graphviz-php-2.40.1-lp151.6.3 is installed OR graphviz-plugins-core-2.40.1-lp151.6.3 is installed OR graphviz-python-2.40.1-lp151.6.3 is installed OR graphviz-ruby-2.40.1-lp151.6.3 is installed OR graphviz-smyrna-2.40.1-lp151.6.3 is installed OR graphviz-tcl-2.40.1-lp151.6.3 is installed OR libgraphviz6-2.40.1-lp151.6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libwireshark8-2.2.9-48.9 is installed OR libwiretap6-2.2.9-48.9 is installed OR libwscodecs1-2.2.9-48.9 is installed OR libwsutil7-2.2.9-48.9 is installed OR wireshark-2.2.9-48.9 is installed OR wireshark-gtk-2.2.9-48.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND libpng15-15-1.5.22-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_63-default-10-2 is installed OR kgraft-patch-3_12_74-60_64_63-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_22-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libpython3_4m1_0-3.4.1-12 is installed OR python3-base-3.4.1-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR libwebkit2gtk3-lang-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed OR webkit2gtk3-devel-2.24.4-2.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20180703-13.25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information at-3.1.14-7 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND binutils-2.32-9.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information bash-4.3-83.23 is installed OR bash-doc-4.3-83.23 is installed OR libreadline6-6.3-83.23 is installed OR libreadline6-32bit-6.3-83.23 is installed OR readline-doc-6.3-83.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND axis-1.4-290.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND python-tablib-0.9.11-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6-LTSS is installed AND Package Information ruby2.1-rubygem-actionview-4_2-4.2.9-9.9 is installed OR ruby2.1-rubygem-activesupport-4_2-4.2.9-7.6 is installed OR rubygem-actionview-4_2-4.2.9-9.9 is installed OR rubygem-activesupport-4_2-4.2.9-7.6 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information ardana-ansible-8.0+git.1583432621.24fa60e-3.70 is installed OR ardana-barbican-8.0+git.1585152761.8ef3d61-4.33 is installed OR ardana-db-8.0+git.1583944923.03cca6c-3.31 is installed OR ardana-monasca-8.0+git.1583944894.38f023a-3.24 is installed OR ardana-mq-8.0+git.1583944811.dc14403-3.19 is installed OR ardana-neutron-8.0+git.1584715262.e4ea620-3.39 is installed OR ardana-octavia-8.0+git.1585171918.418f5cf-3.26 is installed OR ardana-tempest-8.0+git.1585311051.6ab5488-3.33 is installed OR documentation-suse-openstack-cloud-installation-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-operations-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-opsconsole-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-planning-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-security-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-supplement-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-upstream-admin-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-upstream-user-8.20200319-1.23 is installed OR documentation-suse-openstack-cloud-user-8.20200319-1.23 is installed OR memcached-1.5.17-3.3 is installed OR openstack-manila-5.1.1~dev5-3.26 is installed OR openstack-manila-api-5.1.1~dev5-3.26 is installed OR openstack-manila-data-5.1.1~dev5-3.26 is installed OR openstack-manila-doc-5.1.1~dev5-3.26 is installed OR openstack-manila-scheduler-5.1.1~dev5-3.26 is installed OR openstack-manila-share-5.1.1~dev5-3.26 is installed OR openstack-neutron-11.0.9~dev63-3.30 is installed OR openstack-neutron-dhcp-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-doc-11.0.9~dev63-3.30 is installed OR openstack-neutron-ha-tool-11.0.9~dev63-3.30 is installed OR openstack-neutron-l3-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-linuxbridge-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-macvtap-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-metadata-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-metering-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-openvswitch-agent-11.0.9~dev63-3.30 is installed OR openstack-neutron-server-11.0.9~dev63-3.30 is installed OR openstack-nova-16.1.9~dev61-3.35 is installed OR openstack-nova-api-16.1.9~dev61-3.35 is installed OR openstack-nova-cells-16.1.9~dev61-3.35 is installed OR openstack-nova-compute-16.1.9~dev61-3.35 is installed OR openstack-nova-conductor-16.1.9~dev61-3.35 is installed OR openstack-nova-console-16.1.9~dev61-3.35 is installed OR openstack-nova-consoleauth-16.1.9~dev61-3.35 is installed OR openstack-nova-doc-16.1.9~dev61-3.35 is installed OR openstack-nova-novncproxy-16.1.9~dev61-3.35 is installed OR openstack-nova-placement-api-16.1.9~dev61-3.35 is installed OR openstack-nova-scheduler-16.1.9~dev61-3.35 is installed OR openstack-nova-serialproxy-16.1.9~dev61-3.35 is installed OR openstack-nova-vncproxy-16.1.9~dev61-3.35 is installed OR pdns-4.1.2-3.6 is installed OR pdns-backend-mysql-4.1.2-3.6 is installed OR python-amqp-2.4.2-3.9 is installed OR python-manila-5.1.1~dev5-3.26 is installed OR python-neutron-11.0.9~dev63-3.30 is installed OR python-nova-16.1.9~dev61-3.35 is installed OR venv-openstack-aodh-5.1.1~dev7-12.24 is installed OR venv-openstack-aodh-x86_64-5.1.1~dev7-12.24 is installed OR venv-openstack-barbican-5.0.2~dev3-12.25 is installed OR venv-openstack-barbican-x86_64-5.0.2~dev3-12.25 is installed OR venv-openstack-ceilometer-9.0.8~dev7-12.22 is installed OR venv-openstack-ceilometer-x86_64-9.0.8~dev7-12.22 is installed OR venv-openstack-cinder-11.2.3~dev23-14.25 is installed OR venv-openstack-cinder-x86_64-11.2.3~dev23-14.25 is installed OR venv-openstack-designate-5.0.3~dev7-12.23 is installed OR venv-openstack-designate-x86_64-5.0.3~dev7-12.23 is installed OR venv-openstack-freezer-5.0.0.0~xrc2~dev2-10.20 is installed OR venv-openstack-freezer-x86_64-5.0.0.0~xrc2~dev2-10.20 is installed OR venv-openstack-glance-15.0.3~dev3-12.23 is installed OR venv-openstack-glance-x86_64-15.0.3~dev3-12.23 is installed OR venv-openstack-heat-9.0.8~dev22-12.25 is installed OR venv-openstack-heat-x86_64-9.0.8~dev22-12.25 is installed OR venv-openstack-ironic-9.1.8~dev8-12.25 is installed OR venv-openstack-ironic-x86_64-9.1.8~dev8-12.25 is installed OR venv-openstack-keystone-12.0.4~dev5-11.26 is installed OR venv-openstack-keystone-x86_64-12.0.4~dev5-11.26 is installed OR venv-openstack-magnum-5.0.2_5.0.2_5.0.2~dev31-11.24 is installed OR venv-openstack-magnum-x86_64-5.0.2_5.0.2_5.0.2~dev31-11.24 is installed OR venv-openstack-manila-5.1.1~dev5-12.29 is installed OR venv-openstack-manila-x86_64-5.1.1~dev5-12.29 is installed OR venv-openstack-monasca-ceilometer-1.5.1_1.5.1_1.5.1~dev3-8.20 is installed OR venv-openstack-monasca-ceilometer-x86_64-1.5.1_1.5.1_1.5.1~dev3-8.20 is installed OR venv-openstack-murano-4.0.2~dev2-12.20 is installed OR venv-openstack-murano-x86_64-4.0.2~dev2-12.20 is installed OR venv-openstack-neutron-11.0.9~dev63-13.28 is installed OR venv-openstack-neutron-x86_64-11.0.9~dev63-13.28 is installed OR venv-openstack-nova-16.1.9~dev61-11.26 is installed OR venv-openstack-nova-x86_64-16.1.9~dev61-11.26 is installed OR venv-openstack-octavia-1.0.6~dev3-12.25 is installed OR venv-openstack-octavia-x86_64-1.0.6~dev3-12.25 is installed OR venv-openstack-sahara-7.0.5~dev4-11.24 is installed OR venv-openstack-sahara-x86_64-7.0.5~dev4-11.24 is installed OR venv-openstack-trove-8.0.2~dev2-11.24 is installed OR venv-openstack-trove-x86_64-8.0.2~dev2-11.24 is installed OR zookeeper-3.4.10-3.6 is installed OR zookeeper-server-3.4.10-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information bind-9.9.9P1-63.17 is installed OR bind-chrootenv-9.9.9P1-63.17 is installed OR bind-doc-9.9.9P1-63.17 is installed OR bind-libs-9.9.9P1-63.17 is installed OR bind-libs-32bit-9.9.9P1-63.17 is installed OR bind-utils-9.9.9P1-63.17 is installed

BACK