{"affected":[{"ecosystem_specific":{"binaries":[{"libwireshark14":"3.4.10-3.62.1","libwiretap11":"3.4.10-3.62.1","libwsutil12":"3.4.10-3.62.1","wireshark":"3.4.10-3.62.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP2","name":"wireshark","purl":"pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.10-3.62.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libwireshark14":"3.4.10-3.62.1","libwiretap11":"3.4.10-3.62.1","libwsutil12":"3.4.10-3.62.1","wireshark":"3.4.10-3.62.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP3","name":"wireshark","purl":"pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.10-3.62.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"wireshark-devel":"3.4.10-3.62.1","wireshark-ui-qt":"3.4.10-3.62.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP2","name":"wireshark","purl":"pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP2"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.10-3.62.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"wireshark-devel":"3.4.10-3.62.1","wireshark-ui-qt":"3.4.10-3.62.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Desktop Applications 15 SP3","name":"wireshark","purl":"pkg:rpm/suse/wireshark&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3.4.10-3.62.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for wireshark fixes the following issues:\n\n- Update to Wireshark 3.4.10:\n- CVE-2021-39920: IPPUSB dissector crash (bsc#1192830).\n- CVE-2021-39921: Modbus dissector crash (bsc#1192830).\n- CVE-2021-39922: C12.22 dissector crash (bsc#1192830).\n- CVE-2021-39924: Bluetooth DHT dissector large loop (bsc#1192830).\n- CVE-2021-39925: Bluetooth SDP dissector crash (bsc#1192830).\n- CVE-2021-39926: Bluetooth HCI_ISO dissector crash (bsc#1192830).\n- CVE-2021-39928: IEEE 802.11 dissector crash (bsc#1192830).\n- CVE-2021-39929: Bluetooth DHT dissector crash (bsc#1192830).      \n","id":"SUSE-SU-2021:3938-1","modified":"2021-12-06T13:42:15Z","published":"2021-12-06T13:42:15Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2021/suse-su-20213938-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1192830"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-39920"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-39921"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-39922"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-39924"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-39925"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-39926"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-39928"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2021-39929"}],"related":["CVE-2021-39920","CVE-2021-39921","CVE-2021-39922","CVE-2021-39924","CVE-2021-39925","CVE-2021-39926","CVE-2021-39928","CVE-2021-39929"],"summary":"Security update for wireshark","upstream":["CVE-2021-39920","CVE-2021-39921","CVE-2021-39922","CVE-2021-39924","CVE-2021-39925","CVE-2021-39926","CVE-2021-39928","CVE-2021-39929"]}