Bug 1215959 (CVE-2023-5371)

Summary: VUL-0: CVE-2023-5371: wireshark: RTPS dissector memory leak (wnpa-sec-2023-27)
Product: [openSUSE] openSUSE Distribution Reporter: Andreas Stieger <Andreas.Stieger>
Component: SecurityAssignee: Security Team bot <security-team>
Status: RESOLVED FIXED QA Contact: Security Team bot <security-team>
Severity: Normal    
Priority: P3 - Medium    
Version: Leap 15.5   
Target Milestone: ---   
Hardware: Other   
OS: Other   
URL: https://smash.suse.de/issue/380841/
Whiteboard: CVSSv3.1:SUSE:CVE-2023-5371:3.3:(AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)
Found By: Security Response Team Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Andreas Stieger 2023-10-04 18:33:42 UTC 
It may be possible to make Wireshark consume excessive CPU resources by injecting a malformed packet onto the wire or by convincing someone to read a malformed packet trace file. The RTPS dissector could leak memory.

This is fixed in versions: 4.0.9, 3.6.17

Reproducer: https://www.wireshark.org/download/automated/captures/fuzz-2023-09-04-10873.pcap.gz

References:
https://www.wireshark.org/security/wnpa-sec-2023-27
https://gitlab.com/wireshark/wireshark/-/issues/19322
Comment 2 Robert Frohl 2023-10-09 11:05:06 UTC 
should be submitted everywhere now, closing
Comment 3 Maintenance Automation 2023-10-16 12:30:12 UTC 
SUSE-SU-2023:4083-1: An update that solves one vulnerability can now be installed.

Category: security (low)
Bug References: 1215959
CVE References: CVE-2023-5371
Sources used:
SUSE Manager Proxy 4.2 (src): wireshark-3.6.17-150000.3.103.1
SUSE Manager Retail Branch Server 4.2 (src): wireshark-3.6.17-150000.3.103.1
SUSE Manager Server 4.2 (src): wireshark-3.6.17-150000.3.103.1
Basesystem Module 15-SP4 (src): wireshark-3.6.17-150000.3.103.1
Basesystem Module 15-SP5 (src): wireshark-3.6.17-150000.3.103.1
Desktop Applications Module 15-SP4 (src): wireshark-3.6.17-150000.3.103.1
Desktop Applications Module 15-SP5 (src): wireshark-3.6.17-150000.3.103.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.