Accepted ethereal 0.99.0-1ubuntu1 (source)
Sebastian Droege
slomo at ubuntu.com
Mon May 8 15:15:09 BST 2006
Accepted:
OK: ethereal_0.99.0-1ubuntu1.dsc
-> Component: universe Section: net
OK: ethereal_0.99.0.orig.tar.gz
OK: ethereal_0.99.0-1ubuntu1.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 8 May 2006 13:47:30 +0200
Source: ethereal
Binary: ethereal ethereal-dev tethereal ethereal-common
Architecture: source
Version: 0.99.0-1ubuntu1
Distribution: dapper
Urgency: high
Maintainer: Frederic Peters <fpeters at debian.org>
Changed-By: Sebastian Droege <slomo at ubuntu.com>
Description:
ethereal - network traffic analyzer
ethereal-common - network traffic analyser (common files)
ethereal-dev - network traffic analyser (development tools)
tethereal - network traffic analyzer (console)
Closes: 344011 353613
Changes:
ethereal (0.99.0-1ubuntu1) dapper; urgency=low
.
* Sync with Debian:
+ Use python2.4
* This upload fixes a bunch of security holes:
http://www.ethereal.com/appnotes/enpa-sa-00023.html
.
ethereal (0.99.0-1) unstable; urgency=high
.
* New upstream release (urgency high since it fixes security issues;
see http://www.ethereal.com/appnotes/enpa-sa-00023.html advisory)
* crash in H.248 dissector (CVE-2006-1937)
* infinite loop in UMA dissector (CVE-2006-1933)
* crash in X.509if dissector (CVE-2006-1937)
* crash in SRVLOC dissector (CVE-2006-1937)
* crash in H.245 dissector (CVE-2006-1937)
* off-by-one error in OID printing routine (CVE-2006-1932)
* buffer overflow in COPS dissector (CVE-2006-1935)
* buffer overflow in ALCAP dissector (CVE-2006-1934)
* crash in statistics counter (CVE-2006-1937)
* crash with malformed capture (CVE-2006-1938)
* crash with invalid display filter (CVE-2006-1939)
* crash in general packet dissector (CVE-2006-1937)
* crash in AIM dissector (CVE-2006-1937)
* crash in RPC dissector (CVE-2006-1939)
* crash in DCERPC dissector (CVE-2006-1939)
* crash in ASN.1 dissector (CVE-2006-1939)
* crash in SMB PIPE dissector (CVE-2006-1938)
* excessive loop in BER dissector (CVE-2006-1933)
* abort in SNDCP dissector (CVE-2006-1940)
* buffer overrun in Network Instruments file code (CVE-2006-1934)
* buffer overrun in NetXray/Windows Sniffer file code (CVE-2006-1934)
* crash in GSM SMS dissector (CVE-2006-1939)
* buffer overrun in ALCAP dissector (CVE-2006-1934)
* buffer overrun in telnet dissector (CVE-2006-1936)
* crash in ASN.1 based dissectors (CVE-2006-1939)
* crash in DCERPC NT dissector (CVE-2006-1939)
* crash in PER dissector (CVE-2006-1939)
* debian/patches/04_drop-capabilities.dpatch: updated.
* debian/control: added build-depends on libgnutls-dev since libgnutls can
now be used for SSL support.
.
ethereal (0.10.14-2) unstable; urgency=low
.
* debian/watch: added watch file.
.
ethereal (0.10.14-1) unstable; urgency=low
.
* New upstream release.
* Acknowledge NMU, thanks for the support while I was away.
* debian/patches/11-security-CVE-2005-3651.dpatch: removed since included
upstream.
* debian/patches/07_gcc4.dpatch: removed part about packet-cms since it now
causes the build to fail.
.
ethereal (0.10.13-1.3) unstable; urgency=low
.
* Non-maintainer upload.
* Build-conflict with libsnmp-dev, not just libsnmp5-dev, to prevent
accidental linkage with openssl. Closes: #353613.
.
ethereal (0.10.13-1.2) unstable; urgency=high
.
* Non-maintainer upload.
* High-urgency upload for RC bugfix.
* Add missing epan/gnuc_format_check.h, epan/ipv6-utils.h headers to
ethereal-dev. Closes: #344011.
* Build-depend on automake1.9 instead of automake; the latter points to
the ancient automake1.4 package, which was not what's used upstream.
Files:
6d8118968d3cb5738646d3bea3c60ebc 901 net optional ethereal_0.99.0-1ubuntu1.dsc
92490abe23df1b2078579c512c788f9d 11284145 net optional ethereal_0.99.0.orig.tar.gz
f4210e6cf14a7ecb89a7d871dbc37ec0 145629 net optional ethereal_0.99.0-1ubuntu1.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2.2 (GNU/Linux)
iD8DBQFEX1IUBsBdh1vkHyERAlMIAJ9h5u2GNQiaE/LV/A1suAfzg9w0DQCgkboz
wZU0pYQZ7epssbVcqDmqSR4=
=RiB1
-----END PGP SIGNATURE-----
More information about the dapper-changes
mailing list