-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Sat, 30 Jan 2021 15:55:58 +0200 Source: wireshark Architecture: source Version: 2.6.20-0+deb10u1 Distribution: buster Urgency: medium Maintainer: Balint Reczey <rbalint@ubuntu.com> Changed-By: Adrian Bunk <bunk@debian.org> Closes: 958213 974688 974689 Changes: wireshark (2.6.20-0+deb10u1) buster; urgency=medium . * Non-maintainer upload. * New upstream version including the following security fixes: - CVE-2019-16319: The Gryphon dissector could go into an infinite loop. - CVE-2019-19553: The CMS dissector could crash. - CVE-2020-7045: The BT ATT dissector could crash. - CVE-2020-9428: The EAP dissector could crash. - CVE-2020-9430: The WiMax DLMAP dissector could crash. - CVE-2020-9431: The LTE RRC dissector could leak memory. - CVE-2020-11647: The BACapp dissector could crash. (Closes: #958213) - CVE-2020-13164: The NFS dissector could crash. - CVE-2020-15466: The GVCP dissector could go into an infinite loop. - CVE-2020-25862: The TCP dissector could crash. - CVE-2020-25863: The MIME Multipart dissector could crash. * Adjust 17_libdir_location.patch for context changes. * Since Wireshark 2.6.14 tests are run automatically by debhelper, backport the build fix and making test failures non-fatal. * CVE-2020-26575: The Facebook Zero Protocol (aka FBZERO) dissector could enter an infinite loop. (Closes: #974688) * CVE-2020-28030: The GQUIC dissector could crash. (Closes: #974689) * CVE-2020-26418: Memory leak in the Kafka protocol dissector. * CVE-2020-26421: Crash in USB HID protocol dissector. Checksums-Sha1: b100f55bc3e266dee8286bd7e7a2420f582cae6c 3562 wireshark_2.6.20-0+deb10u1.dsc 2e4295eeba3f54134c1f37a6e931e0f4a67c0487 28805496 wireshark_2.6.20.orig.tar.xz 8819974538704fa80aec9915c3117c6c13fec4bd 74480 wireshark_2.6.20-0+deb10u1.debian.tar.xz Checksums-Sha256: eec61725aa68b603523dba0001539d0bcb1e82c65a88952cb444b90a34613995 3562 wireshark_2.6.20-0+deb10u1.dsc a97a5f3934ef09b93236f7dbc97a162c0348667cbc9dd68291473b8f7b276c60 28805496 wireshark_2.6.20.orig.tar.xz 115b8227b6f177f7d10af51a90da73b9f32173dd914344a946350e1dac7d9c67 74480 wireshark_2.6.20-0+deb10u1.debian.tar.xz Files: 06eb58b5c0729959d54629f666f0b2b5 3562 net optional wireshark_2.6.20-0+deb10u1.dsc ac4f79c6878703634797e041fd136a98 28805496 net optional wireshark_2.6.20.orig.tar.xz e5e8ac7750ae6df63663af42706f08a6 74480 net optional wireshark_2.6.20-0+deb10u1.debian.tar.xz -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEOvp1f6xuoR0v9F3wiNJCh6LYmLEFAmAVbAwACgkQiNJCh6LY mLHj1g//brE5kmY9wlQNJor0xJnX/VdWTkozqBFNtfJwbW4Lpt+ypKTiG28ygfkh tT0ocC3kQYH5oh87lxgyuxBiXDSqmRmZRrIh8Y0bUDwuALyiIwhmaAmWm1O4zi69 zvKAYyui6MZSj8D4knVJWtEPo4NhHou0NbFURd+HizY7PGTpaR1BMT6i0WD9WdrK GEcpUPypKmPyskB7JZszWvR0hVUELeyZvlaT0RoiP4Vw8GN3gjbM9KdKKNjgW6Ud 4MWR9idNWly2MZb3vmdn5E5ITeG7kMC20d4NDpFKbP8lc8gMR8YU/+/jtJHi2SrD IYC12G2bncxZHyFLn8bU4W716bT7LT8dKOOH8hWZpeWkf5ZEPbNE0s9hohEHPr2Q bKFv8a7R6kiNo+yigXKGC82rCrtfA/XlFnaiasBm+NreceNdmeeK1FKIQvfu+XAF PnWELtwW6VtjYXIdP9rgv9fgRbUI4CWhY2Ze9SfVGcvQ1pHagv41H1/Y4TuOYepm +FqlgQAFGSgk+FA4omGVcMY7ejXLw9+cE+mT/ndcs1oWp2XfrcerIKLdiO3ex4PM yxf+JvPmmkujgffu5HjGPgiMJirxX8plkJ91Chsu5teqONjz4KL4+mXAqIIFB56K K6OGNc8JohUEckX4XrkYfby+eaD1kuyX8hAEY4RoqVYEV6wdwlU= =yNvm -----END PGP SIGNATURE-----