[ubuntu/raring-proposed] wireshark 1.8.2-5 (Accepted)

Scott Kitterman scott at kitterman.com
Thu Mar 14 20:46:05 UTC 2013 

wireshark (1.8.2-5) unstable; urgency=high

  * security fixes from Wireshark 1.8.6:
    - The TCP dissector could crash (CVE-2013-2475)
    - The CSN.1 dissector could crash. Discovered by Laurent Butti.
      (CVE-2013-2477)
    - MMS dissector could crash. Discovered by Laurent Butti.
      (CVE-2013-2478)
    - The RTPS and RTPS2 dissectors could crash. Discovered by Alyssa Milburn.
      (CVE-2013-2480)
    - The Mount dissector could crash. Discovered by Alyssa Milburn.
      (CVE-2013-2481)
    - The ACN dissector could attempt to divide by zero.
      Discovered by Alyssa Milburn. (CVE-2013-2483)
    - The CIMD dissector could crash. Discovered by Moshe Kaplan.
      (CVE-2013-2484)
    - The DTLS dissector could crash. Discovered by Laurent Butti.
      (CVE-2013-2488)

wireshark (1.8.2-4) unstable; urgency=high

  * security fixes from Wireshark 1.8.5:
    - The CLNP dissector could crash. Discovered independently by
      Laurent Butti and the Wireshark development team (CVE-2013-1582)
    - The DTN dissector could crash (CVE-2013-1583, CVE-2013-1584)
    - The MS-MMC dissector (and possibly others) could crash (CVE-2013-1585)
    - The DTLS dissector could crash. Discovered by Laurent Butti.
      (CVE-2013-1586)
    - The ROHC dissector could crash (CVE-2013-1587)
    - The DCP-ETSI dissector could corrupt memory. Discovered by Laurent Butti.
      (CVE-2013-1588)
    - The Wireshark dissection engine could crash. Discovered by Laurent Butti.
    - The NTLMSSP dissector could overflow a buffer. Discovered by
      Ulf Härnhammar. (CVE-2013-1590)

Date: Sat, 09 Mar 2013 12:59:06 +0100
Changed-By: Scott Kitterman <scott at kitterman.com>
Maintainer: Balint Reczey <balint at balintreczey.hu>
Origin: debian/unstable
https://launchpad.net/ubuntu/raring/+source/wireshark/1.8.2-5
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.8
Date: Sat, 09 Mar 2013 12:59:06 +0100
Source: wireshark
Binary: wireshark-common wireshark tshark wireshark-dev wireshark-dbg wireshark-doc libwireshark2 libwsutil2 libwsutil-dev libwireshark-data libwireshark-dev libwiretap2 libwiretap-dev
Architecture: source
Version: 1.8.2-5
Distribution: raring-proposed
Urgency: high
Maintainer: Balint Reczey <balint at balintreczey.hu>
Changed-By: Scott Kitterman <scott at kitterman.com>
Description: 
 libwireshark-data - network packet dissection library -- data files
 libwireshark-dev - network packet dissection library -- development files
 libwireshark2 - network packet dissection library -- shared library
 libwiretap-dev - network packet capture library -- development files
 libwiretap2 - network packet capture library -- shared library
 libwsutil-dev - network packet dissection utilities library -- shared library
 libwsutil2 - network packet dissection utilities library -- shared library
 tshark     - network traffic analyzer - console version
 wireshark  - network traffic analyzer - GTK+ version
 wireshark-common - network traffic analyzer - common files
 wireshark-dbg - network traffic analyzer - debug symbols
 wireshark-dev - network traffic analyzer - development tools
 wireshark-doc - network traffic analyzer - documentation
Changes: 
 wireshark (1.8.2-5) unstable; urgency=high
 .
   * security fixes from Wireshark 1.8.6:
     - The TCP dissector could crash (CVE-2013-2475)
     - The CSN.1 dissector could crash. Discovered by Laurent Butti.
       (CVE-2013-2477)
     - MMS dissector could crash. Discovered by Laurent Butti.
       (CVE-2013-2478)
     - The RTPS and RTPS2 dissectors could crash. Discovered by Alyssa Milburn.
       (CVE-2013-2480)
     - The Mount dissector could crash. Discovered by Alyssa Milburn.
       (CVE-2013-2481)
     - The ACN dissector could attempt to divide by zero.
       Discovered by Alyssa Milburn. (CVE-2013-2483)
     - The CIMD dissector could crash. Discovered by Moshe Kaplan.
       (CVE-2013-2484)
     - The DTLS dissector could crash. Discovered by Laurent Butti.
       (CVE-2013-2488)
 .
 wireshark (1.8.2-4) unstable; urgency=high
 .
   * security fixes from Wireshark 1.8.5:
     - The CLNP dissector could crash. Discovered independently by
       Laurent Butti and the Wireshark development team (CVE-2013-1582)
     - The DTN dissector could crash (CVE-2013-1583, CVE-2013-1584)
     - The MS-MMC dissector (and possibly others) could crash (CVE-2013-1585)
     - The DTLS dissector could crash. Discovered by Laurent Butti.
       (CVE-2013-1586)
     - The ROHC dissector could crash (CVE-2013-1587)
     - The DCP-ETSI dissector could corrupt memory. Discovered by Laurent Butti.
       (CVE-2013-1588)
     - The Wireshark dissection engine could crash. Discovered by Laurent Butti.
     - The NTLMSSP dissector could overflow a buffer. Discovered by
       Ulf Härnhammar. (CVE-2013-1590)
Checksums-Sha1: 
 830e28aa920356d22395764120ab1994297e19ad 2296 wireshark_1.8.2-5.dsc
 7e9ea9fa34f035ff1ad7c4604be8108c2da1e30d 87841 wireshark_1.8.2-5.debian.tar.gz
Checksums-Sha256: 
 306e152d3991041a55e4f6c432ff835b213595e489c7627f512474e645bc978b 2296 wireshark_1.8.2-5.dsc
 6b62d9bad23ad08b7823d2d1c51e01f4a034b40f6b8a959b6eda74270b5aebb9 87841 wireshark_1.8.2-5.debian.tar.gz
Files: 
 726799a47d85249773774190d31a2f4e 2296 net optional wireshark_1.8.2-5.dsc
 e9e4f13c0fd9105bda8bc3d742e36f25 87841 net optional wireshark_1.8.2-5.debian.tar.gz
Origin: debian/unstable

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEYEARECAAYFAlFCNkMACgkQHajaM93NaGo8OgCgizBUoRA4L+htDPdm/yyubzgI
gQUAnjbluXrTWx969x3ZcLNxsvFLN+fJ
=Hood
-----END PGP SIGNATURE-----

More information about the Raring-changes mailing list