Security update for wireshark
SUSE Security Update: Security update for wireshark
This version upgrade of wireshark fixes multiple denial of
service flaws:
* CVE-2012-2394: denial of service via memory alignment
flaw
* CVE-2012-2393: DIAMETER memory allocation flaw
* CVE-2012-2392: denial of service in multiple
dissectors / parsers
Additionally, various other non-security bug fixes have
been introduced.
Security Issue references:
* CVE-2012-2392
>
* CVE-2012-2393
>
* CVE-2012-2394
>
http://support.novell.com/security/cve/CVE-2012-2392.html
http://support.novell.com/security/cve/CVE-2012-2393.html
http://support.novell.com/security/cve/CVE-2012-2394.html
https://bugzilla.novell.com/763855
https://bugzilla.novell.com/763857
https://bugzilla.novell.com/763859
http://download.suse.com/patch/finder/?keywords=5983708b2e2f0e4b7509a75f22ba2a57
http://download.suse.com/patch/finder/?keywords=5fa5091667b27983282e5dac3c593ef4
| Announcement ID: | SUSE-SU-2012:0792-1 |
| Rating: | moderate |
| References: | #763855 #763857 #763859 |
| Affected Products: |
An update that fixes three vulnerabilities is now available. It includes one version update.
Description:
This version upgrade of wireshark fixes multiple denial of
service flaws:
* CVE-2012-2394: denial of service via memory alignment
flaw
* CVE-2012-2393: DIAMETER memory allocation flaw
* CVE-2012-2392: denial of service in multiple
dissectors / parsers
Additionally, various other non-security bug fixes have
been introduced.
Security Issue references:
* CVE-2012-2392
* CVE-2012-2393
* CVE-2012-2394
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Software Development Kit 11 SP2:
zypper in -t patch sdksp1-wireshark-6381 - SUSE Linux Enterprise Software Development Kit 11 SP1:
zypper in -t patch sdksp1-wireshark-6381 - SUSE Linux Enterprise Server 11 SP2:
zypper in -t patch slessp1-wireshark-6381 - SUSE Linux Enterprise Server 11 SP1 for VMware:
zypper in -t patch slessp1-wireshark-6381 - SUSE Linux Enterprise Server 11 SP1:
zypper in -t patch slessp1-wireshark-6381 - SUSE Linux Enterprise Desktop 11 SP2:
zypper in -t patch sledsp1-wireshark-6381 - SUSE Linux Enterprise Desktop 11 SP1:
zypper in -t patch sledsp1-wireshark-6381
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Software Development Kit 11 SP2 (i586 ia64 ppc64 s390x x86_64) [New Version: 1.4.13]:
- wireshark-devel-1.4.13-0.2.1
- SUSE Linux Enterprise Software Development Kit 11 SP2 (i586 x86_64) [New Version: 1.4.13]:
- wireshark-1.4.13-0.2.1
- SUSE Linux Enterprise Software Development Kit 11 SP1 (i586 ia64 ppc64 s390x x86_64) [New Version: 1.4.13]:
- wireshark-devel-1.4.13-0.2.1
- SUSE Linux Enterprise Software Development Kit 11 SP1 (i586 x86_64) [New Version: 1.4.13]:
- wireshark-1.4.13-0.2.1
- SUSE Linux Enterprise Server 11 SP2 (i586 ia64 ppc64 s390x x86_64) [New Version: 1.4.13]:
- wireshark-1.4.13-0.2.1
- SUSE Linux Enterprise Server 11 SP1 for VMware (i586 x86_64) [New Version: 1.4.13]:
- wireshark-1.4.13-0.2.1
- SUSE Linux Enterprise Server 11 SP1 (i586 ia64 ppc64 s390x x86_64) [New Version: 1.4.13]:
- wireshark-1.4.13-0.2.1
- SUSE Linux Enterprise Server 10 SP4 (i586 ia64 ppc s390x x86_64):
- wireshark-1.4.13-0.5.1
- wireshark-devel-1.4.13-0.5.1
- SUSE Linux Enterprise Desktop 11 SP2 (i586 x86_64) [New Version: 1.4.13]:
- wireshark-1.4.13-0.2.1
- SUSE Linux Enterprise Desktop 11 SP1 (i586 x86_64) [New Version: 1.4.13]:
- wireshark-1.4.13-0.2.1
- SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64):
- wireshark-1.4.13-0.5.1
- SLE SDK 10 SP4 (i586 ia64 ppc s390x x86_64):
- wireshark-devel-1.4.13-0.5.1