Test ID:	1.3.6.1.4.1.25623.1.1.1.2.2015.198
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DLA-198-1)
Summary:	The remote host is missing an update for the Debian 'wireshark' package(s) announced via the DLA-198-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'wireshark' package(s) announced via the DLA-198-1 advisory. Vulnerability Insight: The following vulnerabilities were discovered in the Squeeze's Wireshark version: CVE-2015-2188 The WCP dissector could crash CVE-2015-0564 Wireshark could crash while decypting TLS/SSL sessions CVE-2015-0562 The DEC DNA Routing Protocol dissector could crash CVE-2014-8714 TN5250 infinite loops CVE-2014-8713 NCP crashes CVE-2014-8712 NCP crashes CVE-2014-8711 AMQP crash CVE-2014-8710 SigComp UDVM buffer overflow CVE-2014-6432 Sniffer file parser crash CVE-2014-6431 Sniffer file parser crash CVE-2014-6430 Sniffer file parser crash CVE-2014-6429 Sniffer file parser crash CVE-2014-6428 SES dissector crash CVE-2014-6423 MEGACO dissector infinite loop CVE-2014-6422 RTP dissector crash Since back-porting upstream patches to 1.2.11-6+squeeze15 did not fix all the outstanding issues and some issues are not even tracked publicly the LTS Team decided to sync squeeze-lts's wireshark package with wheezy-security to provide the best possible security support. Note that upgrading Wireshark from 1.2.x to 1.8.x introduces several backward-incompatible changes in package structure, shared library API/ABI, availability of dissectors and in syntax of command line parameters. Affected Software/OS: 'wireshark' package(s) on Debian 6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-6422 Debian Security Information: DSA-3049 (Google Search) http://www.debian.org/security/2014/dsa-3049 RedHat Security Advisories: RHSA-2014:1676 http://rhn.redhat.com/errata/RHSA-2014-1676.html RedHat Security Advisories: RHSA-2014:1677 http://rhn.redhat.com/errata/RHSA-2014-1677.html http://secunia.com/advisories/60280 http://secunia.com/advisories/60578 http://secunia.com/advisories/61929 http://secunia.com/advisories/61933 SuSE Security Announcement: SUSE-SU-2014:1221 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00033.html SuSE Security Announcement: openSUSE-SU-2014:1249 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-09/msg00058.html Common Vulnerability Exposure (CVE) ID: CVE-2014-6423 Common Vulnerability Exposure (CVE) ID: CVE-2014-6428 Common Vulnerability Exposure (CVE) ID: CVE-2014-6429 Common Vulnerability Exposure (CVE) ID: CVE-2014-6430 Common Vulnerability Exposure (CVE) ID: CVE-2014-6431 Common Vulnerability Exposure (CVE) ID: CVE-2014-6432 Common Vulnerability Exposure (CVE) ID: CVE-2014-8710 BugTraq ID: 71069 http://www.securityfocus.com/bid/71069 Debian Security Information: DSA-3076 (Google Search) http://www.debian.org/security/2014/dsa-3076 http://lists.fedoraproject.org/pipermail/package-announce/2014-December/145658.html RedHat Security Advisories: RHSA-2015:1460 http://rhn.redhat.com/errata/RHSA-2015-1460.html http://secunia.com/advisories/60231 http://secunia.com/advisories/60290 SuSE Security Announcement: openSUSE-SU-2014:1503 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-11/msg00104.html Common Vulnerability Exposure (CVE) ID: CVE-2014-8711 BugTraq ID: 71070 http://www.securityfocus.com/bid/71070 Common Vulnerability Exposure (CVE) ID: CVE-2014-8712 BugTraq ID: 71071 http://www.securityfocus.com/bid/71071 Common Vulnerability Exposure (CVE) ID: CVE-2014-8713 BugTraq ID: 71073 http://www.securityfocus.com/bid/71073 Common Vulnerability Exposure (CVE) ID: CVE-2014-8714 BugTraq ID: 71072 http://www.securityfocus.com/bid/71072 Common Vulnerability Exposure (CVE) ID: CVE-2015-0562 BugTraq ID: 71921 http://www.securityfocus.com/bid/71921 Debian Security Information: DSA-3141 (Google Search) http://www.debian.org/security/2015/dsa-3141 http://www.mandriva.com/security/advisories?name=MDVSA-2015:022 http://secunia.com/advisories/62612 http://secunia.com/advisories/62673 SuSE Security Announcement: openSUSE-SU-2015:0113 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-01/msg00053.html Common Vulnerability Exposure (CVE) ID: CVE-2015-0563 BugTraq ID: 71916 http://www.securityfocus.com/bid/71916 Common Vulnerability Exposure (CVE) ID: CVE-2015-0564 BugTraq ID: 71922 http://www.securityfocus.com/bid/71922 Common Vulnerability Exposure (CVE) ID: CVE-2015-2188 BugTraq ID: 72942 http://www.securityfocus.com/bid/72942 Debian Security Information: DSA-3210 (Google Search) http://www.debian.org/security/2015/dsa-3210 https://security.gentoo.org/glsa/201510-03 http://www.mandriva.com/security/advisories?name=MDVSA-2015:183 http://www.securitytracker.com/id/1031858 SuSE Security Announcement: openSUSE-SU-2015:0489 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-03/msg00038.html Common Vulnerability Exposure (CVE) ID: CVE-2015-2191 BugTraq ID: 72941 http://www.securityfocus.com/bid/72941
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.