Oval Definition:oval:org.opensuse.security:def:56540
Revision Date:2020-12-01Version:1
Title:Security update for wireshark (Moderate)
Description:

This update for wireshark to version 2.2.12 fixes the following issues:

- CVE-2018-5334: IxVeriWave file could crash (bsc#1075737) - CVE-2018-5335: WCP dissector could crash (bsc#1075738) - CVE-2018-5336: Multiple dissector crashes (bsc#1075739) - CVE-2017-17935: Incorrect handling of '\n' in file_read_line function could have lead to denial of service (bsc#1074171)

This release no longer enables the Linux kernel BPF JIT compiler via the net.core.bpf_jit_enable sysctl, as this would make systems more vulnerable to Spectre variant 1 CVE-2017-5753 - (bsc#1075748)

Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.2.12.html
Family:unixClass:patch
Status:Reference(s):1052481
1053911
1058297
1065872
1068003
1074171
1075737
1075738
1075739
1075748
1088268
1090036
1097158
1097624
1098592
1103676
1120489
1133114
1133145
1153674
816099
867251
875631
880007
943645
944749
945219
949752
953518
955104
955308
956084
956852
957986
959146
959257
959330
959463
959552
959709
960174
960458
960561
960629
961257
961500
961516
961588
961658
963193
963746
963765
963827
963960
964201
964730
965087
965199
965830
965891
965924
966026
966094
966278
966437
966471
966693
966831
966864
966910
967047
967292
967299
967650
967651
967802
967903
968010
968018
968074
968141
968206
968230
968234
968253
968448
968512
968643
968670
969112
969439
969571
969655
969690
969735
969992
969993
970062
970135
970160
970249
970909
971125
971360
971949
988675
988676
990500
990970
991934
992224
993665
994421
994625
994761
994772
994775
995785
995789
995792
CVE-2009-4492
CVE-2010-0541
CVE-2011-1004
CVE-2011-1005
CVE-2011-3200
CVE-2011-4815
CVE-2013-0334
CVE-2013-4758
CVE-2013-6370
CVE-2013-6371
CVE-2014-3634
CVE-2014-3683
CVE-2014-5044
CVE-2015-5276
CVE-2015-8709
CVE-2015-8812
CVE-2015-8816
CVE-2016-2143
CVE-2016-2184
CVE-2016-2384
CVE-2016-2782
CVE-2016-3139
CVE-2016-3156
CVE-2016-6258
CVE-2016-6259
CVE-2016-6833
CVE-2016-6834
CVE-2016-6835
CVE-2016-6836
CVE-2016-6888
CVE-2016-7092
CVE-2016-7093
CVE-2016-7094
CVE-2017-0861
CVE-2017-1000117
CVE-2017-17935
CVE-2017-7550
CVE-2018-0732
CVE-2018-1000199
CVE-2018-1000223
CVE-2018-20217
CVE-2018-5334
CVE-2018-5335
CVE-2018-5336
CVE-2019-11365
CVE-2019-11366
CVE-2019-14287
CVE-2019-14287
SUSE-SU-2016:1019-1
SUSE-SU-2016:2473-1
SUSE-SU-2017:2320-1
SUSE-SU-2018:0191-1
SUSE-SU-2018:0605-1
SUSE-SU-2018:1227-1
SUSE-SU-2018:1968-1
SUSE-SU-2018:3070-1
SUSE-SU-2019:0111-1
SUSE-SU-2019:1091-1
SUSE-SU-2019:2668-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libXRes1-1.2.0-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • exim-4.88-lp151.4.3 is installed
  • OR eximon-4.88-lp151.4.3 is installed
  • OR eximstats-html-4.88-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libwireshark8-2.2.12-48.18 is installed
  • OR libwiretap6-2.2.12-48.18 is installed
  • OR libwscodecs1-2.2.12-48.18 is installed
  • OR libwsutil7-2.2.12-48.18 is installed
  • OR wireshark-2.2.12-48.18 is installed
  • OR wireshark-gtk-2.2.12-48.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • rsyslog-8.4.0-8 is installed
  • OR rsyslog-diag-tools-8.4.0-8 is installed
  • OR rsyslog-doc-8.4.0-8 is installed
  • OR rsyslog-module-gssapi-8.4.0-8 is installed
  • OR rsyslog-module-gtls-8.4.0-8 is installed
  • OR rsyslog-module-mysql-8.4.0-8 is installed
  • OR rsyslog-module-pgsql-8.4.0-8 is installed
  • OR rsyslog-module-relp-8.4.0-8 is installed
  • OR rsyslog-module-snmp-8.4.0-8 is installed
  • OR rsyslog-module-udpspoof-8.4.0-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • libopenssl1_0_0-1.0.1i-54.14 is installed
  • OR libopenssl1_0_0-32bit-1.0.1i-54.14 is installed
  • OR libopenssl1_0_0-hmac-1.0.1i-54.14 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.1i-54.14 is installed
  • OR openssl-1.0.1i-54.14 is installed
  • OR openssl-doc-1.0.1i-54.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • cpp48-4.8.5-30 is installed
  • OR gcc48-4.8.5-30 is installed
  • OR gcc48-32bit-4.8.5-30 is installed
  • OR gcc48-c++-4.8.5-30 is installed
  • OR gcc48-info-4.8.5-30 is installed
  • OR gcc48-locale-4.8.5-30 is installed
  • OR libasan0-4.8.5-30 is installed
  • OR libasan0-32bit-4.8.5-30 is installed
  • OR libstdc++48-devel-4.8.5-30 is installed
  • OR libstdc++48-devel-32bit-4.8.5-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libwireshark9-2.4.10-48.32 is installed
  • OR libwiretap7-2.4.10-48.32 is installed
  • OR libwscodecs1-2.4.10-48.32 is installed
  • OR libwsutil8-2.4.10-48.32 is installed
  • OR wireshark-2.4.10-48.32 is installed
  • OR wireshark-gtk-2.4.10-48.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • apache2-2.4.23-29.27 is installed
  • OR apache2-doc-2.4.23-29.27 is installed
  • OR apache2-example-pages-2.4.23-29.27 is installed
  • OR apache2-prefork-2.4.23-29.27 is installed
  • OR apache2-utils-2.4.23-29.27 is installed
  • OR apache2-worker-2.4.23-29.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • ibus-chewing-1.4.14-4 is installed
  • OR ibus-pinyin-1.5.0-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libvirt-3.3.0-5.40 is installed
  • OR libvirt-admin-3.3.0-5.40 is installed
  • OR libvirt-client-3.3.0-5.40 is installed
  • OR libvirt-daemon-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-config-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-interface-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-libxl-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-network-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nodedev-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-nwfilter-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-secret-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-core-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-disk-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-iscsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-logical-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-mpath-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-rbd-3.3.0-5.40 is installed
  • OR libvirt-daemon-driver-storage-scsi-3.3.0-5.40 is installed
  • OR libvirt-daemon-hooks-3.3.0-5.40 is installed
  • OR libvirt-daemon-lxc-3.3.0-5.40 is installed
  • OR libvirt-daemon-qemu-3.3.0-5.40 is installed
  • OR libvirt-daemon-xen-3.3.0-5.40 is installed
  • OR libvirt-doc-3.3.0-5.40 is installed
  • OR libvirt-libs-3.3.0-5.40 is installed
  • OR libvirt-lock-sanlock-3.3.0-5.40 is installed
  • OR libvirt-nss-3.3.0-5.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • MozillaFirefox-68.5.0-109.106 is installed
  • OR MozillaFirefox-translations-common-68.5.0-109.106 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • ibus-chewing-1.4.14-4 is installed
  • OR ibus-pinyin-1.5.0-11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND ansible-2.2.3.0-9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • dnsmasq-2.78-18.12 is installed
  • OR dnsmasq-utils-2.78-18.12 is installed
    • BACK