Security update for wireshark SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2017:1442-1 Final 1 1 2017-05-30T11:22:49Z current 2017-05-30T11:22:49Z 2017-05-30T11:22:49Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for wireshark Wireshark was updated to version 2.2.6, which brings several new features, enhancements and bug fixes. Thses security issues were fixed: - CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by ensuring a nonzero record size (bsc#1033936) - CVE-2017-7701: In Wireshark the BGP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-bgp.c by using a different integer data type (bsc#1033937) - CVE-2017-7702: In Wireshark the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding length validation (bsc#1033938) - CVE-2017-7703: In Wireshark the IMAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-imap.c by calculating a line's end correctly (bsc#1033939) - CVE-2017-7704: In Wireshark the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value (bsc#1033940) - CVE-2017-7705: In Wireshark the RPC over RDMA dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-rpcrdma.c by correctly checking for going beyond the maximum offset (bsc#1033941) - CVE-2017-7745: In Wireshark the SIGCOMP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-sigcomp.c by correcting a memory-size check (bsc#1033942) - CVE-2017-7746: In Wireshark the SLSK dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-slsk.c by adding checks for the remaining length (bsc#1033943) - CVE-2017-7747: In Wireshark the PacketBB dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-packetbb.c by restricting additions to the protocol tree (bsc#1033944) - CVE-2017-7748: In Wireshark the WSP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by adding a length check (bsc#1033945) - CVE-2017-6014: In Wireshark a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion. If the packet size field in a packet header is null, the offset to read from will not advance, causing continuous attempts to read the same zero length packet. This will quickly exhaust all system memory (bsc#1025913) - CVE-2017-5596: In Wireshark the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-asterix.c by changing a data type to avoid an integer overflow (bsc#1021739) - CVE-2017-5597: In Wireshark the DHCPv6 dissector could go into a large loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dhcpv6.c by changing a data type to avoid an integer overflow (bsc#1021739) - CVE-2016-9376: In Wireshark the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflow_v5.c by ensuring that certain length values were sufficiently large (bsc#1010735) - CVE-2016-9375: In Wireshark the DTN dissector could go into an infinite loop, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dtn.c by checking whether SDNV evaluation was successful (bsc#1010740) - CVE-2016-9374: In Wireshark the AllJoyn dissector could crash with a buffer over-read, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-alljoyn.c by ensuring that a length variable properly tracked the state of a signature variable (bsc#1010752) - CVE-2016-9373: In Wireshark the DCERPC dissector could crash with a use-after-free, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dcerpc-nt.c and epan/dissectors/packet-dcerpc-spoolss.c by using the wmem file scope for private strings (bsc#1010754) - CVE-2016-7180: epan/dissectors/packet-ipmi-trace.c in the IPMI trace dissector in Wireshark did not properly consider whether a string is constant, which allowed remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet (bsc#998800) - CVE-2016-7179: Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark allowed remote attackers to cause a denial of service (application crash) via a crafted packet (bsc#998963) - CVE-2016-7178: epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark did not ensure that memory is allocated for certain data structures, which allowed remote attackers to cause a denial of service (invalid write access and application crash) via a crafted packet (bsc#998964) - CVE-2016-7177: epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark did not restrict the number of channels, which allowed remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet (bsc#998763) - CVE-2016-7176: epan/dissectors/packet-h225.c in the H.225 dissector in Wireshark called snprintf with one of its input buffers as the output buffer, which allowed remote attackers to cause a denial of service (copy overlap and application crash) via a crafted packet (bsc#998762) - CVE-2016-7175: epan/dissectors/packet-qnet6.c in the QNX6 QNET dissector in Wireshark mishandled MAC address data, which allowed remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet (bsc#998761) - CVE-2016-6354: Heap-based buffer overflow in the yy_get_next_buffer function in Flex might have allowed context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read (bsc#990856). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP1-2017-883,SUSE-SLE-DESKTOP-12-SP2-2017-883,SUSE-SLE-RPI-12-SP2-2017-883,SUSE-SLE-SDK-12-SP1-2017-883,SUSE-SLE-SDK-12-SP2-2017-883,SUSE-SLE-SERVER-12-SP1-2017-883,SUSE-SLE-SERVER-12-SP2-2017-883 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ Link for SUSE-SU-2017:1442-1 https://lists.suse.com/pipermail/sle-security-updates/2017-May/002925.html E-Mail link for SUSE-SU-2017:1442-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1002981 SUSE Bug 1002981 https://bugzilla.suse.com/1010735 SUSE Bug 1010735 https://bugzilla.suse.com/1010740 SUSE Bug 1010740 https://bugzilla.suse.com/1010752 SUSE Bug 1010752 https://bugzilla.suse.com/1010754 SUSE Bug 1010754 https://bugzilla.suse.com/1010911 SUSE Bug 1010911 https://bugzilla.suse.com/1021739 SUSE Bug 1021739 https://bugzilla.suse.com/1025913 SUSE Bug 1025913 https://bugzilla.suse.com/1026507 SUSE Bug 1026507 https://bugzilla.suse.com/1027692 SUSE Bug 1027692 https://bugzilla.suse.com/1027998 SUSE Bug 1027998 https://bugzilla.suse.com/1033936 SUSE Bug 1033936 https://bugzilla.suse.com/1033937 SUSE Bug 1033937 https://bugzilla.suse.com/1033938 SUSE Bug 1033938 https://bugzilla.suse.com/1033939 SUSE Bug 1033939 https://bugzilla.suse.com/1033940 SUSE Bug 1033940 https://bugzilla.suse.com/1033941 SUSE Bug 1033941 https://bugzilla.suse.com/1033942 SUSE Bug 1033942 https://bugzilla.suse.com/1033943 SUSE Bug 1033943 https://bugzilla.suse.com/1033944 SUSE Bug 1033944 https://bugzilla.suse.com/1033945 SUSE Bug 1033945 https://bugzilla.suse.com/990856 SUSE Bug 990856 https://bugzilla.suse.com/998761 SUSE Bug 998761 https://bugzilla.suse.com/998762 SUSE Bug 998762 https://bugzilla.suse.com/998763 SUSE Bug 998763 https://bugzilla.suse.com/998800 SUSE Bug 998800 https://bugzilla.suse.com/998963 SUSE Bug 998963 https://bugzilla.suse.com/998964 SUSE Bug 998964 https://www.suse.com/security/cve/CVE-2016-6354/ SUSE CVE CVE-2016-6354 page https://www.suse.com/security/cve/CVE-2016-7175/ SUSE CVE CVE-2016-7175 page https://www.suse.com/security/cve/CVE-2016-7176/ SUSE CVE CVE-2016-7176 page https://www.suse.com/security/cve/CVE-2016-7177/ SUSE CVE CVE-2016-7177 page https://www.suse.com/security/cve/CVE-2016-7178/ SUSE CVE CVE-2016-7178 page https://www.suse.com/security/cve/CVE-2016-7179/ SUSE CVE CVE-2016-7179 page https://www.suse.com/security/cve/CVE-2016-7180/ SUSE CVE CVE-2016-7180 page https://www.suse.com/security/cve/CVE-2016-9373/ SUSE CVE CVE-2016-9373 page https://www.suse.com/security/cve/CVE-2016-9374/ SUSE CVE CVE-2016-9374 page https://www.suse.com/security/cve/CVE-2016-9375/ SUSE CVE CVE-2016-9375 page https://www.suse.com/security/cve/CVE-2016-9376/ SUSE CVE CVE-2016-9376 page https://www.suse.com/security/cve/CVE-2017-5596/ SUSE CVE CVE-2017-5596 page https://www.suse.com/security/cve/CVE-2017-5597/ SUSE CVE CVE-2017-5597 page https://www.suse.com/security/cve/CVE-2017-6014/ SUSE CVE CVE-2017-6014 page https://www.suse.com/security/cve/CVE-2017-7700/ SUSE CVE CVE-2017-7700 page https://www.suse.com/security/cve/CVE-2017-7701/ SUSE CVE CVE-2017-7701 page https://www.suse.com/security/cve/CVE-2017-7702/ SUSE CVE CVE-2017-7702 page https://www.suse.com/security/cve/CVE-2017-7703/ SUSE CVE CVE-2017-7703 page https://www.suse.com/security/cve/CVE-2017-7704/ SUSE CVE CVE-2017-7704 page https://www.suse.com/security/cve/CVE-2017-7705/ SUSE CVE CVE-2017-7705 page https://www.suse.com/security/cve/CVE-2017-7745/ SUSE CVE CVE-2017-7745 page https://www.suse.com/security/cve/CVE-2017-7746/ SUSE CVE CVE-2017-7746 page https://www.suse.com/security/cve/CVE-2017-7747/ SUSE CVE CVE-2017-7747 page https://www.suse.com/security/cve/CVE-2017-7748/ SUSE CVE CVE-2017-7748 page SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 libwireshark8-2.2.6-44.3 libwiretap6-2.2.6-44.3 libwscodecs1-2.2.6-44.3 libwsutil7-2.2.6-44.3 wireshark-2.2.6-44.3 wireshark-gtk-2.2.6-44.3 wireshark-devel-2.2.6-44.3 libwireshark8-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libwiretap6-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libwscodecs1-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libwsutil7-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 wireshark-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 wireshark-gtk-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libwireshark8-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP2 libwiretap6-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP2 libwscodecs1-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP2 libwsutil7-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP2 wireshark-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP2 wireshark-gtk-2.2.6-44.3 as a component of SUSE Linux Enterprise Desktop 12 SP2 libwireshark8-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP1 libwiretap6-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP1 libwscodecs1-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP1 libwsutil7-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP1 wireshark-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP1 wireshark-gtk-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP1 libwireshark8-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP2 libwiretap6-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP2 libwscodecs1-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP2 libwsutil7-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP2 wireshark-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP2 wireshark-gtk-2.2.6-44.3 as a component of SUSE Linux Enterprise Server 12 SP2 libwireshark8-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libwiretap6-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libwscodecs1-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libwsutil7-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 wireshark-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 wireshark-gtk-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 libwireshark8-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libwiretap6-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libwscodecs1-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libwsutil7-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 wireshark-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 wireshark-gtk-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libwireshark8-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 libwiretap6-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 libwscodecs1-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 libwsutil7-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 wireshark-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 wireshark-gtk-2.2.6-44.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 wireshark-devel-2.2.6-44.3 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 wireshark-devel-2.2.6-44.3 as a component of SUSE Linux Enterprise Software Development Kit 12 SP2 Heap-based buffer overflow in the yy_get_next_buffer function in Flex before 2.6.1 might allow context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read. CVE-2016-6354 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 low 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-6354.html CVE-2016-6354 https://bugzilla.suse.com/1026047 SUSE Bug 1026047 https://bugzilla.suse.com/1035082 SUSE Bug 1035082 https://bugzilla.suse.com/1035209 SUSE Bug 1035209 https://bugzilla.suse.com/990856 SUSE Bug 990856 epan/dissectors/packet-qnet6.c in the QNX6 QNET dissector in Wireshark 2.x before 2.0.6 mishandles MAC address data, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet. CVE-2016-7175 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-7175.html CVE-2016-7175 https://bugzilla.suse.com/998099 SUSE Bug 998099 https://bugzilla.suse.com/998761 SUSE Bug 998761 epan/dissectors/packet-h225.c in the H.225 dissector in Wireshark 2.x before 2.0.6 calls snprintf with one of its input buffers as the output buffer, which allows remote attackers to cause a denial of service (copy overlap and application crash) via a crafted packet. CVE-2016-7176 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-7176.html CVE-2016-7176 https://bugzilla.suse.com/998099 SUSE Bug 998099 https://bugzilla.suse.com/998762 SUSE Bug 998762 epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 does not restrict the number of channels, which allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet. CVE-2016-7177 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-7177.html CVE-2016-7177 https://bugzilla.suse.com/998099 SUSE Bug 998099 https://bugzilla.suse.com/998763 SUSE Bug 998763 epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 2.x before 2.0.6 does not ensure that memory is allocated for certain data structures, which allows remote attackers to cause a denial of service (invalid write access and application crash) via a crafted packet. CVE-2016-7178 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-7178.html CVE-2016-7178 https://bugzilla.suse.com/998099 SUSE Bug 998099 https://bugzilla.suse.com/998964 SUSE Bug 998964 Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark 2.x before 2.0.6 allows remote attackers to cause a denial of service (application crash) via a crafted packet. CVE-2016-7179 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-7179.html CVE-2016-7179 https://bugzilla.suse.com/998099 SUSE Bug 998099 https://bugzilla.suse.com/998963 SUSE Bug 998963 epan/dissectors/packet-ipmi-trace.c in the IPMI trace dissector in Wireshark 2.x before 2.0.6 does not properly consider whether a string is constant, which allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet. CVE-2016-7180 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-7180.html CVE-2016-7180 https://bugzilla.suse.com/998099 SUSE Bug 998099 https://bugzilla.suse.com/998800 SUSE Bug 998800 In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DCERPC dissector could crash with a use-after-free, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dcerpc-nt.c and epan/dissectors/packet-dcerpc-spoolss.c by using the wmem file scope for private strings. CVE-2016-9373 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-9373.html CVE-2016-9373 https://bugzilla.suse.com/1010754 SUSE Bug 1010754 https://bugzilla.suse.com/1010911 SUSE Bug 1010911 In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the AllJoyn dissector could crash with a buffer over-read, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-alljoyn.c by ensuring that a length variable properly tracked the state of a signature variable. CVE-2016-9374 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-9374.html CVE-2016-9374 https://bugzilla.suse.com/1010752 SUSE Bug 1010752 https://bugzilla.suse.com/1010911 SUSE Bug 1010911 In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DTN dissector could go into an infinite loop, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dtn.c by checking whether SDNV evaluation was successful. CVE-2016-9375 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-9375.html CVE-2016-9375 https://bugzilla.suse.com/1010740 SUSE Bug 1010740 https://bugzilla.suse.com/1010911 SUSE Bug 1010911 In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflow_v5.c by ensuring that certain length values were sufficiently large. CVE-2016-9376 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2016-9376.html CVE-2016-9376 https://bugzilla.suse.com/1010735 SUSE Bug 1010735 https://bugzilla.suse.com/1010911 SUSE Bug 1010911 In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-asterix.c by changing a data type to avoid an integer overflow. CVE-2017-5596 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 low 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-5596.html CVE-2017-5596 https://bugzilla.suse.com/1021739 SUSE Bug 1021739 In Wireshark 2.2.0 to 2.2.3 and 2.0.0 to 2.0.9, the DHCPv6 dissector could go into a large loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dhcpv6.c by changing a data type to avoid an integer overflow. CVE-2017-5597 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 low 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-5597.html CVE-2017-5597 https://bugzilla.suse.com/1021739 SUSE Bug 1021739 In Wireshark 2.2.4 and earlier, a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion. If the packet size field in a packet header is null, the offset to read from will not advance, causing continuous attempts to read the same zero length packet. This will quickly exhaust all system memory. CVE-2017-6014 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-6014.html CVE-2017-6014 https://bugzilla.suse.com/1025913 SUSE Bug 1025913 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by ensuring a nonzero record size. CVE-2017-7700 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7700.html CVE-2017-7700 https://bugzilla.suse.com/1033936 SUSE Bug 1033936 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the BGP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-bgp.c by using a different integer data type. CVE-2017-7701 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7701.html CVE-2017-7701 https://bugzilla.suse.com/1033937 SUSE Bug 1033937 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding length validation. CVE-2017-7702 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7702.html CVE-2017-7702 https://bugzilla.suse.com/1033938 SUSE Bug 1033938 https://bugzilla.suse.com/1049255 SUSE Bug 1049255 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the IMAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-imap.c by calculating a line's end correctly. CVE-2017-7703 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7703.html CVE-2017-7703 https://bugzilla.suse.com/1033939 SUSE Bug 1033939 In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value. CVE-2017-7704 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7704.html CVE-2017-7704 https://bugzilla.suse.com/1033940 SUSE Bug 1033940 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-rpcrdma.c by correctly checking for going beyond the maximum offset. CVE-2017-7705 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7705.html CVE-2017-7705 https://bugzilla.suse.com/1033941 SUSE Bug 1033941 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SIGCOMP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-sigcomp.c by correcting a memory-size check. CVE-2017-7745 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7745.html CVE-2017-7745 https://bugzilla.suse.com/1033942 SUSE Bug 1033942 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SLSK dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-slsk.c by adding checks for the remaining length. CVE-2017-7746 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7746.html CVE-2017-7746 https://bugzilla.suse.com/1033943 SUSE Bug 1033943 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the PacketBB dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-packetbb.c by restricting additions to the protocol tree. CVE-2017-7747 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7747.html CVE-2017-7747 https://bugzilla.suse.com/1033944 SUSE Bug 1033944 In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WSP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by adding a length check. CVE-2017-7748 SUSE Linux Enterprise Desktop 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Desktop 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwireshark8-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwiretap6-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwscodecs1-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libwsutil7-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-2.2.6-44.3 SUSE Linux Enterprise Server for SAP Applications 12 SP2:wireshark-gtk-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP1:wireshark-devel-2.2.6-44.3 SUSE Linux Enterprise Software Development Kit 12 SP2:wireshark-devel-2.2.6-44.3 important 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2017/suse-su-20171442-1/ https://www.suse.com/security/cve/CVE-2017-7748.html CVE-2017-7748 https://bugzilla.suse.com/1033945 SUSE Bug 1033945