Overview Details

File _patchinfo of Package patchinfo

<patchinfo>
  <issue id="867485" tracker="bnc">VUL-0: Wireshark 1.10.6 and 1.8.13 maintenance releases fix several vulnerabilities</issue>
  <issue id="CVE-2014-2281" tracker="cve" />
  <issue id="CVE-2014-2282" tracker="cve" />
  <issue id="CVE-2014-2283" tracker="cve" />
  <issue id="CVE-2014-2299" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>AndreasStieger</packager>
  <description>
Wireshark was updated to version 1.8.13 on openSUSE 12.3
and 1.10.6 on openSUSE 13.1 to fix security issues and bugs.

Wireshark update to 1.8.13 [bnc#867485]
  + vulnerabilities fixed:
    * The NFS dissector could crash
      wnpa-sec-2014-01 CVE-2014-2281
    * The RLC dissector could crash
      wnpa-sec-2014-03 CVE-2014-2283
    * The MPEG file parser could overflow a buffer
      wnpa-sec-2014-04 CVE-2014-2299
  + Further bug fixes and updated protocol support as listed in:
    https://www.wireshark.org/docs/relnotes/wireshark-1.8.13.html

Wireshark update to 1.10.6 [bnc#867485] 
  + vulnerabilities fixed:
    * The NFS dissector could crash
      wnpa-sec-2014-01 CVE-2014-2281
    * The M3UA dissector could crash
      wnpa-sec-2014-02 CVE-2014-2282
    * The RLC dissector could crash
      wnpa-sec-2014-03 CVE-2014-2283
    * The MPEG file parser could overflow a buffer
      wnpa-sec-2014-04 CVE-2014-2299
  + Further bug fixes and updated protocol support as listed in:
    https://www.wireshark.org/docs/relnotes/wireshark-1.10.6.html
</description>
  <summary>wireshark: security update to 1.8.13/1.10.6</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places