Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2021 Tenable Network Security, Inc.OPENSUSE-2015-226.NASL
HistoryMar 17, 2015 - 12:00 a.m.

openSUSE Security Update : wireshark (openSUSE-2015-226)

2015-03-1700:00:00
This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.
www.tenable.com
8

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

71.8%

JSON

Wireshark was updated to 1.10.13 on openSUSE 13.1 to fix bugs and security issues. Wireshark was updated to 1.12.4 on openSUSE 13.2 to fix bugs and security issues.

The following security issues were fixed in 1.10.13 :

  • The WCP dissector could crash. wnpa-sec-2015-07 CVE-2015-2188 [bnc#920696]

  • The pcapng file parser could crash. wnpa-sec-2015-08 CVE-2015-2189 [bnc#920697]

  • The TNEF dissector could go into an infinite loop.
    wnpa-sec-2015-10 CVE-2015-2191 [bnc#920699]

  • Further bug fixes and updated protocol support as listed in:
    https://www.wireshark.org/docs/relnotes/wireshark-1.10.1 3.html

The following security issues were fixed in 1.12.4 :

  • The following security issues were fixed :

  • The ATN-CPDLC dissector could crash. wnpa-sec-2015-06 CVE-2015-2187 [bnc#920695]

  • The WCP dissector could crash. wnpa-sec-2015-07 CVE-2015-2188 [bnc#920696]

  • The pcapng file parser could crash. wnpa-sec-2015-08 CVE-2015-2189 [bnc#920697]

  • The LLDP dissector could crash. wnpa-sec-2015-09 CVE-2015-2190 [bnc#920698]

  • The TNEF dissector could go into an infinite loop.
    wnpa-sec-2015-10 CVE-2015-2191 [bnc#920699]

  • The SCSI OSD dissector could go into an infinite loop.
    wnpa-sec-2015-11 CVE-2015-2192 [bnc#920700]

  • Further bug fixes and updated protocol support as listed in:
    https://www.wireshark.org/docs/relnotes/wireshark-1.12.4 .html

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2015-226.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(81869);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2015-2187", "CVE-2015-2188", "CVE-2015-2189", "CVE-2015-2190", "CVE-2015-2191", "CVE-2015-2192");

  script_name(english:"openSUSE Security Update : wireshark (openSUSE-2015-226)");
  script_summary(english:"Check for the openSUSE-2015-226 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Wireshark was updated to 1.10.13 on openSUSE 13.1 to fix bugs and
security issues. Wireshark was updated to 1.12.4 on openSUSE 13.2 to
fix bugs and security issues.

The following security issues were fixed in 1.10.13 :

  - The WCP dissector could crash. wnpa-sec-2015-07
    CVE-2015-2188 [bnc#920696]

  - The pcapng file parser could crash. wnpa-sec-2015-08
    CVE-2015-2189 [bnc#920697]

  - The TNEF dissector could go into an infinite loop.
    wnpa-sec-2015-10 CVE-2015-2191 [bnc#920699]

  - Further bug fixes and updated protocol support as listed
    in:
    https://www.wireshark.org/docs/relnotes/wireshark-1.10.1
    3.html

The following security issues were fixed in 1.12.4 :

  - The following security issues were fixed :

  - The ATN-CPDLC dissector could crash. wnpa-sec-2015-06
    CVE-2015-2187 [bnc#920695]

  - The WCP dissector could crash. wnpa-sec-2015-07
    CVE-2015-2188 [bnc#920696]

  - The pcapng file parser could crash. wnpa-sec-2015-08
    CVE-2015-2189 [bnc#920697]

  - The LLDP dissector could crash. wnpa-sec-2015-09
    CVE-2015-2190 [bnc#920698]

  - The TNEF dissector could go into an infinite loop.
    wnpa-sec-2015-10 CVE-2015-2191 [bnc#920699]

  - The SCSI OSD dissector could go into an infinite loop.
    wnpa-sec-2015-11 CVE-2015-2192 [bnc#920700]

  - Further bug fixes and updated protocol support as listed
    in:
    https://www.wireshark.org/docs/relnotes/wireshark-1.12.4
    .html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=920695"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=920696"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=920697"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=920698"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=920699"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=920700"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.wireshark.org/docs/relnotes/wireshark-1.10.13.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.wireshark.org/docs/relnotes/wireshark-1.12.4.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected wireshark packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-ui-gtk");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-ui-gtk-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-ui-qt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:wireshark-ui-qt-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2015/03/05");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/03/17");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE13\.1|SUSE13\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "13.1 / 13.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE13.1", reference:"wireshark-1.10.13-36.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"wireshark-debuginfo-1.10.13-36.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"wireshark-debugsource-1.10.13-36.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"wireshark-devel-1.10.13-36.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"wireshark-1.12.4-12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"wireshark-debuginfo-1.12.4-12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"wireshark-debugsource-1.12.4-12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"wireshark-devel-1.12.4-12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"wireshark-ui-gtk-1.12.4-12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"wireshark-ui-gtk-debuginfo-1.12.4-12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"wireshark-ui-qt-1.12.4-12.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"wireshark-ui-qt-debuginfo-1.12.4-12.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "wireshark / wireshark-debuginfo / wireshark-debugsource / etc");
}
VendorProductVersionCPE
novellopensusewiresharkp-cpe:/a:novell:opensuse:wireshark
novellopensusewireshark-debuginfop-cpe:/a:novell:opensuse:wireshark-debuginfo
novellopensusewireshark-debugsourcep-cpe:/a:novell:opensuse:wireshark-debugsource
novellopensusewireshark-develp-cpe:/a:novell:opensuse:wireshark-devel
novellopensusewireshark-ui-gtkp-cpe:/a:novell:opensuse:wireshark-ui-gtk
novellopensusewireshark-ui-gtk-debuginfop-cpe:/a:novell:opensuse:wireshark-ui-gtk-debuginfo
novellopensusewireshark-ui-qtp-cpe:/a:novell:opensuse:wireshark-ui-qt
novellopensusewireshark-ui-qt-debuginfop-cpe:/a:novell:opensuse:wireshark-ui-qt-debuginfo
novellopensuse13.1cpe:/o:novell:opensuse:13.1
novellopensuse13.2cpe:/o:novell:opensuse:13.2

Related

nessus 18
kaspersky 1
openvas 16
mageia 1
securityvulns 2
debian 2
gentoo 1
ubuntucve 7
nvd 7
debiancve 7
prion 7
cvelist 7
cve 7
veracode 8
redhat 2
oraclelinux 2
centos 2
amazon 1
osv 1
nessus
nessus
Wireshark 1.10.x < 1.10.13 / 1.12.x < 1.12.4 Multiple DoS Vulnerabilities
2015-03-06 00:00:00
Debian DSA-3210-1 : wireshark - security update
2015-04-02 00:00:00
SuSE 11.3 Security Update : wireshark (SAT Patch Number 10444)
2015-04-02 00:00:00
kaspersky
kaspersky
KLA10518 Denial of service vulnerabilities in Wireshark
2015-03-07 00:00:00
openvas
openvas
Wireshark Denial-of-Service Vulnerability-01 (Mar 2015) - Windows
2015-03-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0653-1)
2021-06-09 00:00:00
Wireshark Denial-of-Service Vulnerability-01 (Mar 2015) - Mac OS X
2015-03-09 00:00:00
mageia
mageia
Updated wireshark package fixes security vulnerabilies
2015-03-28 00:12:10
securityvulns
securityvulns
wireshark multiple security vulnerabilities
2015-04-09 00:00:00
[SECURITY] [DSA 3210-1] wireshark security update
2015-04-09 00:00:00
debian
debian
[SECURITY] [DSA 3210-1] wireshark security update
2015-03-31 17:31:32
[SECURITY] [DLA 198-1] wireshark security update
2015-04-22 09:45:28
gentoo
gentoo
Wireshark: Multiple vulnerabilities
2015-10-31 00:00:00
ubuntucve
ubuntucve
CVE-2015-2192
2015-03-08 00:00:00
CVE-2015-2189
2015-03-08 00:00:00
CVE-2015-2191
2015-03-08 00:00:00
nvd
nvd
CVE-2015-2192
2015-03-08 02:59:06
CVE-2015-2189
2015-03-08 02:59:03
CVE-2015-2190
2015-03-08 02:59:04
debiancve
debiancve
CVE-2015-2187
2015-03-08 02:59:01
CVE-2015-2192
2015-03-08 02:59:06
CVE-2015-2190
2015-03-08 02:59:04
prion
prion
Memory corruption
2015-03-08 02:59:00
Integer overflow
2015-03-08 02:59:00
Out-of-bounds
2015-03-08 02:59:00
cvelist
cvelist
CVE-2015-2192
2015-03-08 02:00:00
CVE-2015-2189
2015-03-08 02:00:00
CVE-2015-2190
2015-03-08 02:00:00
cve
cve
CVE-2015-2192
2015-03-08 02:59:06
CVE-2015-2190
2015-03-08 02:59:04
CVE-2015-2189
2015-03-08 02:59:03
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:41:09
Buffer Underflow
2019-05-02 05:41:10
Out-of-bounds Read
2019-05-02 05:41:10
redhat
redhat
(RHSA-2015:1460) Moderate: wireshark security, bug fix, and enhancement update
2015-07-22 00:00:00
(RHSA-2015:2393) Moderate: wireshark security, bug fix, and enhancement update
2015-11-19 13:43:56
oraclelinux
oraclelinux
wireshark security, bug fix, and enhancement update
2015-07-28 00:00:00
wireshark security, bug fix, and enhancement update
2015-11-23 00:00:00
centos
centos
wireshark security update
2015-07-26 14:12:34
wireshark security update
2015-11-30 19:55:40
amazon
amazon
Medium: wireshark
2015-08-17 12:29:00
osv
osv
wireshark - security update
2015-04-22 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

71.8%

JSON
Related for OPENSUSE-2015-226.NASL
nessus18kaspersky1openvas16mageia1securityvulns2debian2gentoo1ubuntucve7nvd7debiancve7prion7cvelist7cve7veracode8redhat2oraclelinux2centos2amazon1osv1