-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 31 Oct 2020 21:05:56 +0200 Source: wireshark Binary: wireshark-common wireshark wireshark-qt wireshark-gtk tshark wireshark-dev wireshark-doc libwireshark11 libwsutil9 libwsutil-dev libwscodecs2 libwireshark-data libwireshark-dev libwiretap8 libwiretap-dev Architecture: source Version: 2.6.8-1.1~deb9u1 Distribution: stretch-security Urgency: medium Maintainer: Balint Reczey <rbalint@ubuntu.com> Changed-By: Adrian Bunk <bunk@debian.org> Description: libwireshark-data - network packet dissection library -- data files libwireshark-dev - network packet dissection library -- development files libwireshark11 - network packet dissection library -- shared library libwiretap-dev - network packet capture library -- development files libwiretap8 - network packet capture library -- shared library libwscodecs2 - network packet dissection codecs library -- shared library libwsutil-dev - network packet dissection utilities library -- development files libwsutil9 - network packet dissection utilities library -- shared library tshark - network traffic analyzer - console version wireshark - network traffic analyzer - meta-package wireshark-common - network traffic analyzer - common files wireshark-dev - network traffic analyzer - development tools wireshark-doc - network traffic analyzer - documentation wireshark-gtk - network traffic analyzer - GTK+ version wireshark-qt - network traffic analyzer - Qt version Closes: 926718 929446 Changes: wireshark (2.6.8-1.1~deb9u1) stretch-security; urgency=medium . * Non-maintainer upload by the LTS team. * Rebuild for stretch. . wireshark (2.6.8-1.1) unstable; urgency=medium . * Non-maintainer upload. * CVE-2019-12295 In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14, the dissection engine could crash. This was addressed in epan/packet.c by restricting the number of layers and consequently limiting recursion. (Closes: #929446) . wireshark (2.6.8-1) unstable; urgency=medium . * New upstream version 2.6.8 - security fixes (Closes: #926718): - NetScaler file parser crash. (CVE-2019-10895) - SRVLOC dissector crash. (CVE-2019-10899) - GSS-API dissector crash. (CVE-2019-10894) - DOF dissector crash. (CVE-2019-10896) - LDSS dissector crash. (CVE-2019-10901) - DCERPC SPOOLSS dissector crash. (CVE-2019-10903) Checksums-Sha1: 2615f14bb995e78d51ee32fb319eec5310bad09f 3559 wireshark_2.6.8-1.1~deb9u1.dsc 2ef14fdd3f4e6390015dc3b1552f111c0727236c 28708004 wireshark_2.6.8.orig.tar.xz c18387ff0e353af24e55b7dcc4faa03a9c2add55 71800 wireshark_2.6.8-1.1~deb9u1.debian.tar.xz Checksums-Sha256: f6aa7371e7ab33a5ed845645cce9f3eba16ef14c5e34d9829ad22e1bcdb3f7ce 3559 wireshark_2.6.8-1.1~deb9u1.dsc 46185bc86e6d25aa313b53636c5d0042da6bcec1bfe280313d2c75e77bf9a934 28708004 wireshark_2.6.8.orig.tar.xz 8c40ffac2c6752b2a9e011ae38c30c7484e0464cfb593a2cc7b668a1c4bfd76d 71800 wireshark_2.6.8-1.1~deb9u1.debian.tar.xz Files: bd3375076aaa976f60e82544874119db 3559 net optional wireshark_2.6.8-1.1~deb9u1.dsc 755f0c662e317f164fbfff1d72007fda 28708004 net optional wireshark_2.6.8.orig.tar.xz 2692af861da38addc1bbe96b2d95506b 71800 net optional wireshark_2.6.8-1.1~deb9u1.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEOvp1f6xuoR0v9F3wiNJCh6LYmLEFAl+dwAMACgkQiNJCh6LY mLFxdA//bdeVYjseiylM0Ue6dHL+9tBFRAQdh24wvJm6QN8H4MCHw4K5r61LhR30 TGE1TyGGi0hILA6fIPZvm8r9QiumYAMTlROCur9m0tTa+h4Pi7JI36bVJXYidayl wwHGr9lBiEbFT3SElR7gT3RgsC3uk+F9j41OdEXX3c834/VxIf903p1exXIhqPEX 3gDhBMTlqyyz+Jjon7uLTue0bAEIN2QgRrhSQ+a5mPGt1HcCMUlKbeLqdLE5HBoM i9JOnAk4Ql4EOM5fPopVJDRMyt9CZi3vUlqsIz+yV6nwT5WX6y0m+soTs74OuQGQ mOLStslnb4KUqS94lrhlHL1PLVr9tz2OBUJaZqXY3ihpMb7Mz7QXCgDt3r0r0Acq kpahmoAtaGBQpM3EyNpx5a5doxeJQMrVbGTxh0HyKoWWaDWJx1FWOijT0B26CUso Dryc34Yyr66tbAAXEGpcdljLlSquIESShd9wGFx/mB3gEiSC5QxNpvy5arncVvlh gw7LUh5a8+cavYvw3xNOYFc9YddpBf6LfmdrDejCORiTpHt06D5pdHLZbvCgh5Nw vuKbl0AdLls3RYXIOXJEKDriPD56WWEv0j5nXv94Ru1r1KubQgJ7ilsdHCw7G3xT AOMu8U9fLMO/kGyjhLuAeiFdZkYA72g+fdMBaHRfaHSi31XZxNo= =XPz/ -----END PGP SIGNATURE-----
