Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.4.2013.0714.1
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2013:0714-1)
Summary:The remote host is missing an update for the 'wireshark' package(s) announced via the SUSE-SU-2013:0714-1 advisory.
Description:Summary:
The remote host is missing an update for the 'wireshark' package(s) announced via the SUSE-SU-2013:0714-1 advisory.

Vulnerability Insight:
wireshark has been updated to 1.8.6 which fixes bugs and security issues:

Vulnerabilities fixed:

* The TCP dissector could crash. wnpa-sec-2013-10 CVE-2013-2475
* The HART/IP dissectory could go into an infinite loop. wnpa-sec-2013-11 CVE-2013-2476
* The CSN.1 dissector could crash. wnpa-sec-2013-12 CVE-2013-2477
* The MS-MMS dissector could crash. wnpa-sec-2013-13 CVE-2013-2478
* The MPLS Echo dissector could go into an infinite loop. wnpa-sec-2013-14 CVE-2013-2479
* The RTPS and RTPS2 dissectors could crash.
wnpa-sec-2013-15 CVE-2013-2480
* The Mount dissector could crash. wnpa-sec-2013-16 CVE-2013-2481
* The AMPQ dissector could go into an infinite loop.
wnpa-sec-2013-17 CVE-2013-2482
* The ACN dissector could attempt to divide by zero.
wnpa-sec-2013-18 CVE-2013-2483
* The CIMD dissector could crash. wnpa-sec-2013-19 CVE-2013-2484
* The FCSP dissector could go into an infinite loop.
wnpa-sec-2013-20 CVE-2013-2485
* The RELOAD dissector could go into an infinite loop.
wnpa-sec-2013-21 CVE-2013-2486 CVE-2013-2487
* The DTLS dissector could crash. wnpa-sec-2013-22 CVE-2013-2488

More information about further bug fixes and updated protocol support are listed here:
[link moved to references]
>

Security Issue references:

* CVE-2013-2475
>
* CVE-2013-2476
>
* CVE-2013-2477
>
* CVE-2013-2478
>
* CVE-2013-2479
>
* CVE-2013-2480
>
* CVE-2013-2481
>
* CVE-2013-2482
>
* CVE-2013-2483
>
* CVE-2013-2484
>
* CVE-2013-2485
>
* CVE-2013-2486
>
* CVE-2013-2487
>
* CVE-2013-2488
>

Affected Software/OS:
'wireshark' package(s) on SUSE Linux Enterprise Software Development Kit 11 SP2, SUSE Linux Enterprise Server 11 SP2, SUSE Linux Enterprise Server 10 SP4, SUSE Linux Enterprise Desktop 11 SP2, SUSE Linux Enterprise Desktop 10 SP4, SLE SDK 10 SP4

Solution:
Please install the updated package(s).

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2013-2475
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16627
http://secunia.com/advisories/52471
SuSE Security Announcement: openSUSE-SU-2013:0494 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-03/msg00065.html
SuSE Security Announcement: openSUSE-SU-2013:0506 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-03/msg00077.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-2476
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15838
Common Vulnerability Exposure (CVE) ID: CVE-2013-2477
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16589
Common Vulnerability Exposure (CVE) ID: CVE-2013-2478
Debian Security Information: DSA-2644 (Google Search)
http://www.debian.org/security/2013/dsa-2644
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16447
Common Vulnerability Exposure (CVE) ID: CVE-2013-2479
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16376
Common Vulnerability Exposure (CVE) ID: CVE-2013-2480
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16630
Common Vulnerability Exposure (CVE) ID: CVE-2013-2481
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16420
Common Vulnerability Exposure (CVE) ID: CVE-2013-2482
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16677
Common Vulnerability Exposure (CVE) ID: CVE-2013-2483
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16411
Common Vulnerability Exposure (CVE) ID: CVE-2013-2484
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16469
Common Vulnerability Exposure (CVE) ID: CVE-2013-2485
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16529
Common Vulnerability Exposure (CVE) ID: CVE-2013-2486
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16109
http://secunia.com/advisories/53425
SuSE Security Announcement: openSUSE-SU-2013:0911 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-06/msg00048.html
SuSE Security Announcement: openSUSE-SU-2013:0947 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-06/msg00083.html
Common Vulnerability Exposure (CVE) ID: CVE-2013-2487
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16593
Common Vulnerability Exposure (CVE) ID: CVE-2013-2488
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16672
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 97459 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.