Security Bulletin
This security bulletin contains information about 5 vulnerabilities.
EUVDB-ID: #VU60521
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-0581
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input in CMS dissector. A remote attacker can send specially crafted packets over the network and perform a denial of service (DoS) attack.
MitigationUpdate the affected package wireshark to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Realtime Extension: 15-SP2
SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3
SUSE Linux Enterprise Server: 15-LTSS - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP4
SUSE Enterprise Storage: 6 - 7.1
SUSE Linux Enterprise Module for Desktop Applications: 15-SP3 - 15-SP4
SUSE Manager Server: 4.1 - 4.2
SUSE Manager Retail Branch Server: 4.1
SUSE Manager Proxy: 4.1 - 4.2
SUSE Linux Enterprise Module for Basesystem: 15-SP3 - 15-SP4
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
SUSE CaaS Platform: 4.0
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
wireshark-ui-qt-debuginfo: before 3.6.2-3.71.1
wireshark-ui-qt: before 3.6.2-3.71.1
wireshark-devel: before 3.6.2-3.71.1
wireshark-debugsource: before 3.6.2-3.71.1
wireshark-debuginfo: before 3.6.2-3.71.1
wireshark: before 3.6.2-3.71.1
libwsutil13-debuginfo: before 3.6.2-3.71.1
libwsutil13: before 3.6.2-3.71.1
libwiretap12-debuginfo: before 3.6.2-3.71.1
libwiretap12: before 3.6.2-3.71.1
libwireshark15-debuginfo: before 3.6.2-3.71.1
libwireshark15: before 3.6.2-3.71.1
CPE2.3http://www.suse.com/support/update/announcement/2022/suse-su-20220722-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU60522
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-0582
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input in CSN.1 dissector. A remote attacker can send specially crafted packets over the network and perform a denial of service (DoS) attack.
MitigationUpdate the affected package wireshark to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Realtime Extension: 15-SP2
SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3
SUSE Linux Enterprise Server: 15-LTSS - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP4
SUSE Enterprise Storage: 6 - 7.1
SUSE Linux Enterprise Module for Desktop Applications: 15-SP3 - 15-SP4
SUSE Manager Server: 4.1 - 4.2
SUSE Manager Retail Branch Server: 4.1
SUSE Manager Proxy: 4.1 - 4.2
SUSE Linux Enterprise Module for Basesystem: 15-SP3 - 15-SP4
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
SUSE CaaS Platform: 4.0
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
wireshark-ui-qt-debuginfo: before 3.6.2-3.71.1
wireshark-ui-qt: before 3.6.2-3.71.1
wireshark-devel: before 3.6.2-3.71.1
wireshark-debugsource: before 3.6.2-3.71.1
wireshark-debuginfo: before 3.6.2-3.71.1
wireshark: before 3.6.2-3.71.1
libwsutil13-debuginfo: before 3.6.2-3.71.1
libwsutil13: before 3.6.2-3.71.1
libwiretap12-debuginfo: before 3.6.2-3.71.1
libwiretap12: before 3.6.2-3.71.1
libwireshark15-debuginfo: before 3.6.2-3.71.1
libwireshark15: before 3.6.2-3.71.1
CPE2.3http://www.suse.com/support/update/announcement/2022/suse-su-20220722-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU60523
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-0583
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to insufficient validation of user-supplied input in PVFS dissector. A remote attacker can send specially crafted packets over the network and perform a denial of service (DoS) attack.
MitigationUpdate the affected package wireshark to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Realtime Extension: 15-SP2
SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3
SUSE Linux Enterprise Server: 15-LTSS - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP4
SUSE Enterprise Storage: 6 - 7.1
SUSE Linux Enterprise Module for Desktop Applications: 15-SP3 - 15-SP4
SUSE Manager Server: 4.1 - 4.2
SUSE Manager Retail Branch Server: 4.1
SUSE Manager Proxy: 4.1 - 4.2
SUSE Linux Enterprise Module for Basesystem: 15-SP3 - 15-SP4
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
SUSE CaaS Platform: 4.0
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
wireshark-ui-qt-debuginfo: before 3.6.2-3.71.1
wireshark-ui-qt: before 3.6.2-3.71.1
wireshark-devel: before 3.6.2-3.71.1
wireshark-debugsource: before 3.6.2-3.71.1
wireshark-debuginfo: before 3.6.2-3.71.1
wireshark: before 3.6.2-3.71.1
libwsutil13-debuginfo: before 3.6.2-3.71.1
libwsutil13: before 3.6.2-3.71.1
libwiretap12-debuginfo: before 3.6.2-3.71.1
libwiretap12: before 3.6.2-3.71.1
libwireshark15-debuginfo: before 3.6.2-3.71.1
libwireshark15: before 3.6.2-3.71.1
CPE2.3http://www.suse.com/support/update/announcement/2022/suse-su-20220722-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU60524
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-0585
CWE-ID:
CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to large loops in multiple dissectors including AMP, ATN-ULCS and possibly other ASN.1 PER dissectors, BP, GDSDB, OpenFlow v5, P_MUL, SoulSeek, TDS, WBXML, WSP and possibly other WAP dissectors, and ZigBee ZCL. A remote attacker can send specially crafted packets over the network, consume all available system resources and cause denial of service conditions.
MitigationUpdate the affected package wireshark to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Realtime Extension: 15-SP2
SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3
SUSE Linux Enterprise Server: 15-LTSS - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP4
SUSE Enterprise Storage: 6 - 7.1
SUSE Linux Enterprise Module for Desktop Applications: 15-SP3 - 15-SP4
SUSE Manager Server: 4.1 - 4.2
SUSE Manager Retail Branch Server: 4.1
SUSE Manager Proxy: 4.1 - 4.2
SUSE Linux Enterprise Module for Basesystem: 15-SP3 - 15-SP4
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
SUSE CaaS Platform: 4.0
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
wireshark-ui-qt-debuginfo: before 3.6.2-3.71.1
wireshark-ui-qt: before 3.6.2-3.71.1
wireshark-devel: before 3.6.2-3.71.1
wireshark-debugsource: before 3.6.2-3.71.1
wireshark-debuginfo: before 3.6.2-3.71.1
wireshark: before 3.6.2-3.71.1
libwsutil13-debuginfo: before 3.6.2-3.71.1
libwsutil13: before 3.6.2-3.71.1
libwiretap12-debuginfo: before 3.6.2-3.71.1
libwiretap12: before 3.6.2-3.71.1
libwireshark15-debuginfo: before 3.6.2-3.71.1
libwireshark15: before 3.6.2-3.71.1
CPE2.3http://www.suse.com/support/update/announcement/2022/suse-su-20220722-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
EUVDB-ID: #VU60525
Risk: Medium
CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]
CVE-ID: CVE-2022-0586
CWE-ID:
CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to infinite loop in RTMPT dissector. A remote attacker can send specially crafted packets over the network, consume all available system resources and cause denial of service conditions.
MitigationUpdate the affected package wireshark to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Realtime Extension: 15-SP2
SUSE Linux Enterprise Server for SAP: 15-SP1 - 15-SP3
SUSE Linux Enterprise Server: 15-LTSS - 15-SP4
SUSE Linux Enterprise High Performance Computing: 15-ESPOS - 15-SP4
SUSE Enterprise Storage: 6 - 7.1
SUSE Linux Enterprise Module for Desktop Applications: 15-SP3 - 15-SP4
SUSE Manager Server: 4.1 - 4.2
SUSE Manager Retail Branch Server: 4.1
SUSE Manager Proxy: 4.1 - 4.2
SUSE Linux Enterprise Module for Basesystem: 15-SP3 - 15-SP4
SUSE Linux Enterprise Desktop: 15-SP3 - 15-SP4
SUSE CaaS Platform: 4.0
SUSE Linux Enterprise Server for SAP Applications: 15-SP3 - 15-SP4
wireshark-ui-qt-debuginfo: before 3.6.2-3.71.1
wireshark-ui-qt: before 3.6.2-3.71.1
wireshark-devel: before 3.6.2-3.71.1
wireshark-debugsource: before 3.6.2-3.71.1
wireshark-debuginfo: before 3.6.2-3.71.1
wireshark: before 3.6.2-3.71.1
libwsutil13-debuginfo: before 3.6.2-3.71.1
libwsutil13: before 3.6.2-3.71.1
libwiretap12-debuginfo: before 3.6.2-3.71.1
libwiretap12: before 3.6.2-3.71.1
libwireshark15-debuginfo: before 3.6.2-3.71.1
libwireshark15: before 3.6.2-3.71.1
CPE2.3http://www.suse.com/support/update/announcement/2022/suse-su-20220722-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.