950437 – (CVE-2015-7830) VUL-1: CVE-2015-7830: wireshark: Pcapng file parser crash

Bug 950437 (CVE-2015-7830) - VUL-1: CVE-2015-7830: wireshark: Pcapng file parser crash

Summary: VUL-1: CVE-2015-7830: wireshark: Pcapng file parser crash

Status:	RESOLVED FIXED

Alias:	CVE-2015-7830

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P4 - Low Severity: Minor
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:
Whiteboard:	CVSSv2:RedHat:CVE-2015-7830:4.4:(AV:L...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2015-10-14 20:22 UTC by Andreas Stieger
Modified:	2016-04-27 20:22 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Andreas Stieger 2015-10-14 20:22:40 UTC

https://www.wireshark.org/security/wnpa-sec-2015-30.html

Name: Pcapng file parser crash
Docid: wnpa-sec-2015-30
Date: October 14, 2015
Affected versions: 1.12.0 to 1.12.7
Fixed versions: 1.12.8

References: Wireshark bug 11455, CVE-2015-7830

The pcapng file parser could crash while copying an interface filter. Discovered by Dario Lombardo and Shannon Sabens.

Impact

It may be possible to make Wireshark crash by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file.

Reproducers and commits at:
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11455

References:
https://www.wireshark.org/security/wnpa-sec-2015-30.html
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11455
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7830

Comment 1 Swamp Workflow Management 2015-10-14 22:00:34 UTC

bugbot adjusting priority

Comment 3 Bernhard Wiedemann 2015-10-16 15:01:38 UTC

This is an autogenerated message for OBS integration:
This bug (950437) was mentioned in
https://build.opensuse.org/request/show/339307 Factory / wireshark

Comment 4 Bernhard Wiedemann 2015-10-16 20:00:09 UTC

This is an autogenerated message for OBS integration:
This bug (950437) was mentioned in
https://build.opensuse.org/request/show/339336 13.2+13.1+Leap:42.1 / wireshark+wireshark.openSUSE_Leap_42.1

Comment 7 Swamp Workflow Management 2015-10-28 09:10:16 UTC

openSUSE-SU-2015:1836-1: An update that fixes 10 vulnerabilities is now available.

Category: security (moderate)
Bug References: 941500,950437
CVE References: CVE-2015-6241,CVE-2015-6242,CVE-2015-6243,CVE-2015-6244,CVE-2015-6245,CVE-2015-6246,CVE-2015-6247,CVE-2015-6248,CVE-2015-6249,CVE-2015-7830
Sources used:
openSUSE 13.2 (src):    wireshark-1.12.8-25.1
openSUSE 13.1 (src):    wireshark-1.12.8-43.1

Comment 8 Swamp Workflow Management 2015-10-29 16:55:58 UTC

openSUSE-SU-2015:1836-2: An update that fixes 10 vulnerabilities is now available.

Category: security (moderate)
Bug References: 941500,950437
CVE References: CVE-2015-6241,CVE-2015-6242,CVE-2015-6243,CVE-2015-6244,CVE-2015-6245,CVE-2015-6246,CVE-2015-6247,CVE-2015-6248,CVE-2015-6249,CVE-2015-7830
Sources used:
openSUSE  (src):    wireshark-1.12.8-9.1

Comment 9 Andreas Stieger 2016-01-04 15:11:54 UTC

updates running

Comment 10 Andreas Stieger 2016-01-12 11:58:06 UTC

QA: 

Reproducer is at:
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11455
https://bugs.wireshark.org/bugzilla/attachment.cgi?id=13805

Comment 12 Swamp Workflow Management 2016-01-13 18:12:29 UTC

SUSE-SU-2016:0109-1: An update that fixes 24 vulnerabilities is now available.

Category: security (low)
Bug References: 950437,960382
CVE References: CVE-2015-7830,CVE-2015-8711,CVE-2015-8712,CVE-2015-8713,CVE-2015-8714,CVE-2015-8715,CVE-2015-8716,CVE-2015-8717,CVE-2015-8718,CVE-2015-8719,CVE-2015-8720,CVE-2015-8721,CVE-2015-8722,CVE-2015-8723,CVE-2015-8724,CVE-2015-8725,CVE-2015-8726,CVE-2015-8727,CVE-2015-8728,CVE-2015-8729,CVE-2015-8730,CVE-2015-8731,CVE-2015-8732,CVE-2015-8733
Sources used:
SUSE Linux Enterprise Software Development Kit 12-SP1 (src):    wireshark-1.12.9-22.1
SUSE Linux Enterprise Software Development Kit 12 (src):    wireshark-1.12.9-22.1
SUSE Linux Enterprise Server 12-SP1 (src):    wireshark-1.12.9-22.1
SUSE Linux Enterprise Server 12 (src):    wireshark-1.12.9-22.1
SUSE Linux Enterprise Desktop 12-SP1 (src):    wireshark-1.12.9-22.1
SUSE Linux Enterprise Desktop 12 (src):    wireshark-1.12.9-22.1

Comment 13 Swamp Workflow Management 2016-01-13 19:15:46 UTC

SUSE-SU-2016:0110-1: An update that fixes 24 vulnerabilities is now available.

Category: security (low)
Bug References: 950437,960382
CVE References: CVE-2015-7830,CVE-2015-8711,CVE-2015-8712,CVE-2015-8713,CVE-2015-8714,CVE-2015-8715,CVE-2015-8716,CVE-2015-8717,CVE-2015-8718,CVE-2015-8719,CVE-2015-8720,CVE-2015-8721,CVE-2015-8722,CVE-2015-8723,CVE-2015-8724,CVE-2015-8725,CVE-2015-8726,CVE-2015-8727,CVE-2015-8728,CVE-2015-8729,CVE-2015-8730,CVE-2015-8731,CVE-2015-8732,CVE-2015-8733
Sources used:
SUSE Linux Enterprise Software Development Kit 11-SP4 (src):    wireshark-1.12.9-0.12.1
SUSE Linux Enterprise Software Development Kit 11-SP3 (src):    wireshark-1.12.9-0.12.1
SUSE Linux Enterprise Server for VMWare 11-SP3 (src):    wireshark-1.12.9-0.12.1
SUSE Linux Enterprise Server 11-SP4 (src):    wireshark-1.12.9-0.12.1
SUSE Linux Enterprise Server 11-SP3 (src):    wireshark-1.12.9-0.12.1
SUSE Linux Enterprise Desktop 11-SP4 (src):    wireshark-1.12.9-0.12.1
SUSE Linux Enterprise Desktop 11-SP3 (src):    wireshark-1.12.9-0.12.1
SUSE Linux Enterprise Debuginfo 11-SP4 (src):    wireshark-1.12.9-0.12.1
SUSE Linux Enterprise Debuginfo 11-SP3 (src):    wireshark-1.12.9-0.12.1