Oval Definition:oval:org.opensuse.security:def:74356
Revision Date:2021-06-22Version:1
Title:Security update for wireshark (Important)
Description:

This update for wireshark, libvirt, sbc and libqt5-qtmultimedia fixes the following issues:

Update wireshark to version 3.4.5

- New and updated support and bug fixes for multiple protocols - Asynchronous DNS resolution is always enabled - Protobuf fields can be dissected as Wireshark (header) fields - UI improvements

Including security fixes for:

- CVE-2021-22191: Wireshark could open unsafe URLs (bsc#1183353). - CVE-2021-22207: MS-WSP dissector excessive memory consumption (bsc#1185128) - CVE-2020-26422: QUIC dissector crash (bsc#1180232) - CVE-2020-26418: Kafka dissector memory leak (bsc#1179930) - CVE-2020-26419: Multiple dissector memory leaks (bsc#1179931) - CVE-2020-26420: RTPS dissector memory leak (bsc#1179932) - CVE-2020-26421: USB HID dissector crash (bsc#1179933) - CVE-2021-22173: Fix USB HID dissector memory leak (bsc#1181598) - CVE-2021-22174: Fix USB HID dissector crash (bsc#1181599)

libqt5-qtmultimedia and sbc are necessary dependencies. libvirt is needed to rebuild wireshark-plugin-libvirt.
Family:unixClass:patch
Status:Reference(s):1082318
1124827
1140421
1141844
1143763
1143764
1143766
1143768
1154980
1157712
1157714
1179930
1179931
1179932
1179933
1180102
1180232
1181598
1181599
1183353
1184110
1185128
CVE-2019-13616
CVE-2019-18277
CVE-2019-5052
CVE-2019-5057
CVE-2019-5058
CVE-2019-5059
CVE-2019-5060
CVE-2019-7635
CVE-2020-26418
CVE-2020-26419
CVE-2020-26420
CVE-2020-26421
CVE-2020-26422
CVE-2021-22173
CVE-2021-22174
CVE-2021-22191
CVE-2021-22207
openSUSE-SU-2019:2071-1
openSUSE-SU-2019:2645-1
SUSE-SU-2021:2125-1
Platform(s):openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15 SP3
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • SDL_image-1.2.12+hg695-lp151.3.3 is installed
  • OR libSDL_image-1_2-0-1.2.12+hg695-lp151.3.3 is installed
  • OR libSDL_image-1_2-0-32bit-1.2.12+hg695-lp151.3.3 is installed
  • OR libSDL_image-devel-1.2.12+hg695-lp151.3.3 is installed
  • OR libSDL_image-devel-32bit-1.2.12+hg695-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed
  • AND Package Information
  • libsbc1-1.3-3.2.1 is installed
  • OR sbc-devel-1.3-3.2.1 is installed
  • OR wireshark-devel-3.4.5-3.53.1 is installed
  • OR wireshark-ui-qt-3.4.5-3.53.1 is installed
    • BACK