SUSE update for wireshark



Published: 2022-02-14
Risk Medium
Patch available YES
Number of vulnerabilities 6
CVE-ID CVE-2021-4181
CVE-2021-4182
CVE-2021-4183
CVE-2021-4184
CVE-2021-4185
CVE-2021-4190
CWE-ID CWE-20
CWE-835
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe 		SUSE Linux Enterprise Server for SAP
Operating systems & Components / Operating system

SUSE Linux Enterprise Server
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing
Operating systems & Components / Operating system

SUSE Enterprise Storage
Operating systems & Components / Operating system

SUSE Manager Server
Operating systems & Components / Operating system

SUSE Manager Retail Branch Server
Operating systems & Components / Operating system

SUSE Manager Proxy
Operating systems & Components / Operating system

SUSE Linux Enterprise Desktop
Operating systems & Components / Operating system

SUSE CaaS Platform
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications
Operating systems & Components / Operating system

SUSE Linux Enterprise Module for Desktop Applications
Operating systems & Components / Operating system

SUSE Linux Enterprise Module for Basesystem
Operating systems & Components / Operating system

SUSE Linux Enterprise Module for Server Applications
Operating systems & Components / Operating system

libvirt-libs-debuginfo
Operating systems & Components / Operating system package or component

libvirt-libs
Operating systems & Components / Operating system package or component

libvirt-daemon-xen
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-libxl-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-libxl
Operating systems & Components / Operating system package or component

libvirt-doc
Operating systems & Components / Operating system package or component

libvirt-bash-completion
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-rbd-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-rbd
Operating systems & Components / Operating system package or component

libvirt-nss-debuginfo
Operating systems & Components / Operating system package or component

libvirt-nss
Operating systems & Components / Operating system package or component

libvirt-lock-sanlock-debuginfo
Operating systems & Components / Operating system package or component

libvirt-lock-sanlock
Operating systems & Components / Operating system package or component

libvirt-devel
Operating systems & Components / Operating system package or component

libvirt-debugsource
Operating systems & Components / Operating system package or component

libvirt-daemon-qemu
Operating systems & Components / Operating system package or component

libvirt-daemon-lxc
Operating systems & Components / Operating system package or component

libvirt-daemon-hooks
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-scsi-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-scsi
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-mpath-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-mpath
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-logical-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-logical
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-iscsi-direct-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-iscsi-direct
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-iscsi-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-iscsi
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-disk-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-disk
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-core-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage-core
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-storage
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-secret-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-secret
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-qemu-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-qemu
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-nwfilter-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-nwfilter
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-nodedev-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-nodedev
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-network-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-network
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-lxc-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-lxc
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-interface-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-driver-interface
Operating systems & Components / Operating system package or component

libvirt-daemon-debuginfo
Operating systems & Components / Operating system package or component

libvirt-daemon-config-nwfilter
Operating systems & Components / Operating system package or component

libvirt-daemon-config-network
Operating systems & Components / Operating system package or component

libvirt-daemon
Operating systems & Components / Operating system package or component

libvirt-client-debuginfo
Operating systems & Components / Operating system package or component

libvirt-client
Operating systems & Components / Operating system package or component

libvirt-admin-debuginfo
Operating systems & Components / Operating system package or component

libvirt-admin
Operating systems & Components / Operating system package or component

libvirt
Operating systems & Components / Operating system package or component

wireshark-ui-qt-debuginfo
Operating systems & Components / Operating system package or component

wireshark-ui-qt
Operating systems & Components / Operating system package or component

wireshark-devel
Operating systems & Components / Operating system package or component

wireshark-debugsource
Operating systems & Components / Operating system package or component

wireshark-debuginfo
Operating systems & Components / Operating system package or component

wireshark
Operating systems & Components / Operating system package or component

libwsutil13-debuginfo
Operating systems & Components / Operating system package or component

libwsutil13
Operating systems & Components / Operating system package or component

libwiretap12-debuginfo
Operating systems & Components / Operating system package or component

libwiretap12
Operating systems & Components / Operating system package or component

libwireshark15-debuginfo
Operating systems & Components / Operating system package or component

libwireshark15
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 6 vulnerabilities.

1) Input validation error

EUVDB-ID: #VU59119

Risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-4181

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input in the Sysdig Event dissector. A remote attacker can send specially crafted traffic over the network and perform a denial of service (DoS) attack.

Mitigation

Update the affected package wireshark to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3

SUSE Linux Enterprise Server: 15-LTSS - 15-SP3-LTSS

SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP3-LTSS

SUSE Enterprise Storage: 6 - 7.1

SUSE Manager Server: 4.1 - 4.2

SUSE Manager Retail Branch Server: 4.1

SUSE Manager Proxy: 4.1 - 4.2

SUSE Linux Enterprise Desktop: 15-SP3

SUSE CaaS Platform: 4.0

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Module for Desktop Applications: 15-SP3

SUSE Linux Enterprise Module for Basesystem: 15-SP3

SUSE Linux Enterprise Module for Server Applications: 15-SP3

libvirt-libs-debuginfo: before 7.1.0-150300.6.23.1

libvirt-libs: before 7.1.0-150300.6.23.1

libvirt-daemon-xen: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl: before 7.1.0-150300.6.23.1

libvirt-doc: before 7.1.0-150300.6.23.1

libvirt-bash-completion: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd: before 7.1.0-150300.6.23.1

libvirt-nss-debuginfo: before 7.1.0-150300.6.23.1

libvirt-nss: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock-debuginfo: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock: before 7.1.0-150300.6.23.1

libvirt-devel: before 7.1.0-150300.6.23.1

libvirt-debugsource: before 7.1.0-150300.6.23.1

libvirt-daemon-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-hooks: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface: before 7.1.0-150300.6.23.1

libvirt-daemon-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-config-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-config-network: before 7.1.0-150300.6.23.1

libvirt-daemon: before 7.1.0-150300.6.23.1

libvirt-client-debuginfo: before 7.1.0-150300.6.23.1

libvirt-client: before 7.1.0-150300.6.23.1

libvirt-admin-debuginfo: before 7.1.0-150300.6.23.1

libvirt-admin: before 7.1.0-150300.6.23.1

libvirt: before 7.1.0-150300.6.23.1

wireshark-ui-qt-debuginfo: before 3.6.1-3.68.1

wireshark-ui-qt: before 3.6.1-3.68.1

wireshark-devel: before 3.6.1-3.68.1

wireshark-debugsource: before 3.6.1-3.68.1

wireshark-debuginfo: before 3.6.1-3.68.1

wireshark: before 3.6.1-3.68.1

libwsutil13-debuginfo: before 3.6.1-3.68.1

libwsutil13: before 3.6.1-3.68.1

libwiretap12-debuginfo: before 3.6.1-3.68.1

libwiretap12: before 3.6.1-3.68.1

libwireshark15-debuginfo: before 3.6.1-3.68.1

libwireshark15: before 3.6.1-3.68.1

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20220375-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Infinite loop

EUVDB-ID: #VU59120

Risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-4182

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop in RFC 7468 file parser. A remote attacker can trick the victim to open a specially crafted packet trace file and consume excessive CPU resources.

Mitigation

Update the affected package wireshark to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3

SUSE Linux Enterprise Server: 15-LTSS - 15-SP3-LTSS

SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP3-LTSS

SUSE Enterprise Storage: 6 - 7.1

SUSE Manager Server: 4.1 - 4.2

SUSE Manager Retail Branch Server: 4.1

SUSE Manager Proxy: 4.1 - 4.2

SUSE Linux Enterprise Desktop: 15-SP3

SUSE CaaS Platform: 4.0

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Module for Desktop Applications: 15-SP3

SUSE Linux Enterprise Module for Basesystem: 15-SP3

SUSE Linux Enterprise Module for Server Applications: 15-SP3

libvirt-libs-debuginfo: before 7.1.0-150300.6.23.1

libvirt-libs: before 7.1.0-150300.6.23.1

libvirt-daemon-xen: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl: before 7.1.0-150300.6.23.1

libvirt-doc: before 7.1.0-150300.6.23.1

libvirt-bash-completion: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd: before 7.1.0-150300.6.23.1

libvirt-nss-debuginfo: before 7.1.0-150300.6.23.1

libvirt-nss: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock-debuginfo: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock: before 7.1.0-150300.6.23.1

libvirt-devel: before 7.1.0-150300.6.23.1

libvirt-debugsource: before 7.1.0-150300.6.23.1

libvirt-daemon-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-hooks: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface: before 7.1.0-150300.6.23.1

libvirt-daemon-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-config-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-config-network: before 7.1.0-150300.6.23.1

libvirt-daemon: before 7.1.0-150300.6.23.1

libvirt-client-debuginfo: before 7.1.0-150300.6.23.1

libvirt-client: before 7.1.0-150300.6.23.1

libvirt-admin-debuginfo: before 7.1.0-150300.6.23.1

libvirt-admin: before 7.1.0-150300.6.23.1

libvirt: before 7.1.0-150300.6.23.1

wireshark-ui-qt-debuginfo: before 3.6.1-3.68.1

wireshark-ui-qt: before 3.6.1-3.68.1

wireshark-devel: before 3.6.1-3.68.1

wireshark-debugsource: before 3.6.1-3.68.1

wireshark-debuginfo: before 3.6.1-3.68.1

wireshark: before 3.6.1-3.68.1

libwsutil13-debuginfo: before 3.6.1-3.68.1

libwsutil13: before 3.6.1-3.68.1

libwiretap12-debuginfo: before 3.6.1-3.68.1

libwiretap12: before 3.6.1-3.68.1

libwireshark15-debuginfo: before 3.6.1-3.68.1

libwireshark15: before 3.6.1-3.68.1

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20220375-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Input validation error

EUVDB-ID: #VU59121

Risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-4183

CWE-ID: CWE-20 - Improper input validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input in pcapng file parser. A remote attacker can trick the victim to open a malformed packet trace file and perform a denial of service (DoS) attack.

Mitigation

Update the affected package wireshark to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3

SUSE Linux Enterprise Server: 15-LTSS - 15-SP3-LTSS

SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP3-LTSS

SUSE Enterprise Storage: 6 - 7.1

SUSE Manager Server: 4.1 - 4.2

SUSE Manager Retail Branch Server: 4.1

SUSE Manager Proxy: 4.1 - 4.2

SUSE Linux Enterprise Desktop: 15-SP3

SUSE CaaS Platform: 4.0

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Module for Desktop Applications: 15-SP3

SUSE Linux Enterprise Module for Basesystem: 15-SP3

SUSE Linux Enterprise Module for Server Applications: 15-SP3

libvirt-libs-debuginfo: before 7.1.0-150300.6.23.1

libvirt-libs: before 7.1.0-150300.6.23.1

libvirt-daemon-xen: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl: before 7.1.0-150300.6.23.1

libvirt-doc: before 7.1.0-150300.6.23.1

libvirt-bash-completion: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd: before 7.1.0-150300.6.23.1

libvirt-nss-debuginfo: before 7.1.0-150300.6.23.1

libvirt-nss: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock-debuginfo: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock: before 7.1.0-150300.6.23.1

libvirt-devel: before 7.1.0-150300.6.23.1

libvirt-debugsource: before 7.1.0-150300.6.23.1

libvirt-daemon-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-hooks: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface: before 7.1.0-150300.6.23.1

libvirt-daemon-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-config-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-config-network: before 7.1.0-150300.6.23.1

libvirt-daemon: before 7.1.0-150300.6.23.1

libvirt-client-debuginfo: before 7.1.0-150300.6.23.1

libvirt-client: before 7.1.0-150300.6.23.1

libvirt-admin-debuginfo: before 7.1.0-150300.6.23.1

libvirt-admin: before 7.1.0-150300.6.23.1

libvirt: before 7.1.0-150300.6.23.1

wireshark-ui-qt-debuginfo: before 3.6.1-3.68.1

wireshark-ui-qt: before 3.6.1-3.68.1

wireshark-devel: before 3.6.1-3.68.1

wireshark-debugsource: before 3.6.1-3.68.1

wireshark-debuginfo: before 3.6.1-3.68.1

wireshark: before 3.6.1-3.68.1

libwsutil13-debuginfo: before 3.6.1-3.68.1

libwsutil13: before 3.6.1-3.68.1

libwiretap12-debuginfo: before 3.6.1-3.68.1

libwiretap12: before 3.6.1-3.68.1

libwireshark15-debuginfo: before 3.6.1-3.68.1

libwireshark15: before 3.6.1-3.68.1

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20220375-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Infinite loop

EUVDB-ID: #VU59122

Risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-4184

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop in BitTorrent DHT dissector. A remote attacker can send specially crafted traffic over the network, consume all available system resources and cause denial of service conditions.

Mitigation

Update the affected package wireshark to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3

SUSE Linux Enterprise Server: 15-LTSS - 15-SP3-LTSS

SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP3-LTSS

SUSE Enterprise Storage: 6 - 7.1

SUSE Manager Server: 4.1 - 4.2

SUSE Manager Retail Branch Server: 4.1

SUSE Manager Proxy: 4.1 - 4.2

SUSE Linux Enterprise Desktop: 15-SP3

SUSE CaaS Platform: 4.0

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Module for Desktop Applications: 15-SP3

SUSE Linux Enterprise Module for Basesystem: 15-SP3

SUSE Linux Enterprise Module for Server Applications: 15-SP3

libvirt-libs-debuginfo: before 7.1.0-150300.6.23.1

libvirt-libs: before 7.1.0-150300.6.23.1

libvirt-daemon-xen: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl: before 7.1.0-150300.6.23.1

libvirt-doc: before 7.1.0-150300.6.23.1

libvirt-bash-completion: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd: before 7.1.0-150300.6.23.1

libvirt-nss-debuginfo: before 7.1.0-150300.6.23.1

libvirt-nss: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock-debuginfo: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock: before 7.1.0-150300.6.23.1

libvirt-devel: before 7.1.0-150300.6.23.1

libvirt-debugsource: before 7.1.0-150300.6.23.1

libvirt-daemon-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-hooks: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface: before 7.1.0-150300.6.23.1

libvirt-daemon-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-config-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-config-network: before 7.1.0-150300.6.23.1

libvirt-daemon: before 7.1.0-150300.6.23.1

libvirt-client-debuginfo: before 7.1.0-150300.6.23.1

libvirt-client: before 7.1.0-150300.6.23.1

libvirt-admin-debuginfo: before 7.1.0-150300.6.23.1

libvirt-admin: before 7.1.0-150300.6.23.1

libvirt: before 7.1.0-150300.6.23.1

wireshark-ui-qt-debuginfo: before 3.6.1-3.68.1

wireshark-ui-qt: before 3.6.1-3.68.1

wireshark-devel: before 3.6.1-3.68.1

wireshark-debugsource: before 3.6.1-3.68.1

wireshark-debuginfo: before 3.6.1-3.68.1

wireshark: before 3.6.1-3.68.1

libwsutil13-debuginfo: before 3.6.1-3.68.1

libwsutil13: before 3.6.1-3.68.1

libwiretap12-debuginfo: before 3.6.1-3.68.1

libwiretap12: before 3.6.1-3.68.1

libwireshark15-debuginfo: before 3.6.1-3.68.1

libwireshark15: before 3.6.1-3.68.1

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20220375-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Infinite loop

EUVDB-ID: #VU59123

Risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-4185

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop in RTMPT dissector. A remote attacker can send specially crafted traffic over the network, consume all available system resources and cause denial of service conditions.

Mitigation

Update the affected package wireshark to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3

SUSE Linux Enterprise Server: 15-LTSS - 15-SP3-LTSS

SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP3-LTSS

SUSE Enterprise Storage: 6 - 7.1

SUSE Manager Server: 4.1 - 4.2

SUSE Manager Retail Branch Server: 4.1

SUSE Manager Proxy: 4.1 - 4.2

SUSE Linux Enterprise Desktop: 15-SP3

SUSE CaaS Platform: 4.0

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Module for Desktop Applications: 15-SP3

SUSE Linux Enterprise Module for Basesystem: 15-SP3

SUSE Linux Enterprise Module for Server Applications: 15-SP3

libvirt-libs-debuginfo: before 7.1.0-150300.6.23.1

libvirt-libs: before 7.1.0-150300.6.23.1

libvirt-daemon-xen: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl: before 7.1.0-150300.6.23.1

libvirt-doc: before 7.1.0-150300.6.23.1

libvirt-bash-completion: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd: before 7.1.0-150300.6.23.1

libvirt-nss-debuginfo: before 7.1.0-150300.6.23.1

libvirt-nss: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock-debuginfo: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock: before 7.1.0-150300.6.23.1

libvirt-devel: before 7.1.0-150300.6.23.1

libvirt-debugsource: before 7.1.0-150300.6.23.1

libvirt-daemon-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-hooks: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface: before 7.1.0-150300.6.23.1

libvirt-daemon-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-config-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-config-network: before 7.1.0-150300.6.23.1

libvirt-daemon: before 7.1.0-150300.6.23.1

libvirt-client-debuginfo: before 7.1.0-150300.6.23.1

libvirt-client: before 7.1.0-150300.6.23.1

libvirt-admin-debuginfo: before 7.1.0-150300.6.23.1

libvirt-admin: before 7.1.0-150300.6.23.1

libvirt: before 7.1.0-150300.6.23.1

wireshark-ui-qt-debuginfo: before 3.6.1-3.68.1

wireshark-ui-qt: before 3.6.1-3.68.1

wireshark-devel: before 3.6.1-3.68.1

wireshark-debugsource: before 3.6.1-3.68.1

wireshark-debuginfo: before 3.6.1-3.68.1

wireshark: before 3.6.1-3.68.1

libwsutil13-debuginfo: before 3.6.1-3.68.1

libwsutil13: before 3.6.1-3.68.1

libwiretap12-debuginfo: before 3.6.1-3.68.1

libwiretap12: before 3.6.1-3.68.1

libwireshark15-debuginfo: before 3.6.1-3.68.1

libwireshark15: before 3.6.1-3.68.1

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20220375-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Infinite loop

EUVDB-ID: #VU59118

Risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-4190

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop in Kafka protocol dissector. A remote attacker can send specially crafted traffic over the network, consume all available system resources and cause denial of service conditions.

Mitigation

Update the affected package wireshark to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3

SUSE Linux Enterprise Server: 15-LTSS - 15-SP3-LTSS

SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP3-LTSS

SUSE Enterprise Storage: 6 - 7.1

SUSE Manager Server: 4.1 - 4.2

SUSE Manager Retail Branch Server: 4.1

SUSE Manager Proxy: 4.1 - 4.2

SUSE Linux Enterprise Desktop: 15-SP3

SUSE CaaS Platform: 4.0

SUSE Linux Enterprise Micro: 5.1

SUSE Linux Enterprise Server for SAP Applications: 15-SP3

SUSE Linux Enterprise Module for Desktop Applications: 15-SP3

SUSE Linux Enterprise Module for Basesystem: 15-SP3

SUSE Linux Enterprise Module for Server Applications: 15-SP3

libvirt-libs-debuginfo: before 7.1.0-150300.6.23.1

libvirt-libs: before 7.1.0-150300.6.23.1

libvirt-daemon-xen: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-libxl: before 7.1.0-150300.6.23.1

libvirt-doc: before 7.1.0-150300.6.23.1

libvirt-bash-completion: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-rbd: before 7.1.0-150300.6.23.1

libvirt-nss-debuginfo: before 7.1.0-150300.6.23.1

libvirt-nss: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock-debuginfo: before 7.1.0-150300.6.23.1

libvirt-lock-sanlock: before 7.1.0-150300.6.23.1

libvirt-devel: before 7.1.0-150300.6.23.1

libvirt-debugsource: before 7.1.0-150300.6.23.1

libvirt-daemon-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-hooks: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-scsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-mpath: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-logical: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-direct: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-iscsi: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-disk: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage-core: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-storage: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-secret: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-qemu: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-nodedev: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-network: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-lxc: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-driver-interface: before 7.1.0-150300.6.23.1

libvirt-daemon-debuginfo: before 7.1.0-150300.6.23.1

libvirt-daemon-config-nwfilter: before 7.1.0-150300.6.23.1

libvirt-daemon-config-network: before 7.1.0-150300.6.23.1

libvirt-daemon: before 7.1.0-150300.6.23.1

libvirt-client-debuginfo: before 7.1.0-150300.6.23.1

libvirt-client: before 7.1.0-150300.6.23.1

libvirt-admin-debuginfo: before 7.1.0-150300.6.23.1

libvirt-admin: before 7.1.0-150300.6.23.1

libvirt: before 7.1.0-150300.6.23.1

wireshark-ui-qt-debuginfo: before 3.6.1-3.68.1

wireshark-ui-qt: before 3.6.1-3.68.1

wireshark-devel: before 3.6.1-3.68.1

wireshark-debugsource: before 3.6.1-3.68.1

wireshark-debuginfo: before 3.6.1-3.68.1

wireshark: before 3.6.1-3.68.1

libwsutil13-debuginfo: before 3.6.1-3.68.1

libwsutil13: before 3.6.1-3.68.1

libwiretap12-debuginfo: before 3.6.1-3.68.1

libwiretap12: before 3.6.1-3.68.1

libwireshark15-debuginfo: before 3.6.1-3.68.1

libwireshark15: before 3.6.1-3.68.1

External links

http://www.suse.com/support/update/announcement/2022/suse-su-20220375-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###