Bug 741190

Summary: VUL-1: CVE-2012-0042: wireshark: NULL pointer vulnerabilities
Product: [Novell Products] SUSE Security Incidents Reporter: Matthias Weckbecker <mweckbecker>
Component: GeneralAssignee: Security Team bot <security-team>
Status: RESOLVED FIXED QA Contact: Security Team bot <security-team>
Severity: Minor    
Priority: P4 - Low CC: meissner, security-team
Version: unspecified   
Target Milestone: ---   
Hardware: Other   
OS: Other   
Whiteboard: maint:released:11.4:45142 maint:released:sle10-sp3:45264 maint:released:sle10-sp4:45263
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Matthias Weckbecker 2012-01-13 09:00:32 UTC 
"Wireshark was improperly handling NULL pointers when displaying packet information which could lead to a crash.",

http://www.wireshark.org/security/wnpa-sec-2012-02.html
Comment 1 Sebastian Krahmer 2012-01-16 07:47:12 UTC 
CVE-2012-0042
Comment 2 Swamp Workflow Management 2012-01-19 16:41:47 UTC 
The SWAMPID for this issue is 45064.
This issue was rated as moderate.
Please submit fixed packages until 2012-02-02.
When done, please reassign the bug to security-team@suse.de.
Patchinfo will be handled by security team.
Comment 3 Bernhard Wiedemann 2012-01-20 07:00:43 UTC 
This is an autogenerated message for OBS integration:
This bug (741190) was mentioned in
https://build.opensuse.org/request/show/100802 11.3 / wireshark
https://build.opensuse.org/request/show/100803 11.4 / wireshark
https://build.opensuse.org/request/show/100804 12.1 / wireshark
Comment 4 Chunyan Liu 2012-01-30 06:59:30 UTC 
Submitted package for sles to IBS:
r14761 (sles11-sp1) 
r14762 (sles10-sp4)
r14763 (sles10-sp3)
Comment 5 Swamp Workflow Management 2012-02-23 14:48:24 UTC 
Update released for: wireshark, wireshark-debuginfo, wireshark-debugsource, wireshark-devel
Products:
openSUSE 11.4 (debug, i586, x86_64)
Comment 6 Swamp Workflow Management 2012-02-23 18:10:11 UTC 
Update released for: wireshark, wireshark-debuginfo, wireshark-devel
Products:
SLE-SERVER 10-SP3-TERADATA (x86_64)
Comment 7 Swamp Workflow Management 2012-02-23 18:13:26 UTC 
Update released for: wireshark, wireshark-debuginfo, wireshark-devel
Products:
SLE-DESKTOP 10-SP4 (i386, x86_64)
SLE-SDK 10-SP4 (i386, ia64, ppc, s390x, x86_64)
SLE-SERVER 10-SP4 (i386, ia64, ppc, s390x, x86_64)
Comment 8 Bernhard Wiedemann 2012-02-24 08:00:18 UTC 
This is an autogenerated message for OBS integration:
This bug (741190) was mentioned in
https://build.opensuse.org/request/show/106751 Evergreen:11.2 / wireshark
Comment 9 Bernhard Wiedemann 2012-02-24 09:00:20 UTC 
This is an autogenerated message for OBS integration:
This bug (741190) was mentioned in
https://build.opensuse.org/request/show/106757 Evergreen:11.1 / wireshark
Comment 10 Bernhard Wiedemann 2012-02-27 10:02:01 UTC 
This is an autogenerated message for OBS integration:
This bug (741190) was mentioned in
https://build.opensuse.org/request/show/107121 Evergreen:11.1 / wireshark
Comment 11 Marcus Meissner 2012-02-27 14:27:33 UTC 
released