Debian Package Tracker

From: Frederic Peters <fpeters@debian.org>
To: <debian-devel-changes@lists.debian.org>
Subject: Accepted ethereal 0.99.0-1 (source i386)
Date: Tue, 02 May 2006 01:47:10 -0700
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Mon,  1 May 2006 14:50:42 +0200
Source: ethereal
Binary: ethereal ethereal-dev tethereal ethereal-common
Architecture: source i386
Version: 0.99.0-1
Distribution: unstable
Urgency: high
Maintainer: Frederic Peters <fpeters@debian.org>
Changed-By: Frederic Peters <fpeters@debian.org>
Description: 
 ethereal   - network traffic analyzer
 ethereal-common - network traffic analyser (common files)
 ethereal-dev - network traffic analyser (development tools)
 tethereal  - network traffic analyzer (console)
Changes: 
 ethereal (0.99.0-1) unstable; urgency=high
 .
   * New upstream release (urgency high since it fixes security issues;
     see http://www.ethereal.com/appnotes/enpa-sa-00023.html advisory)
     * crash in H.248 dissector (CVE-2006-1937)
     * infinite loop in UMA dissector (CVE-2006-1933)
     * crash in X.509if dissector (CVE-2006-1937)
     * crash in SRVLOC dissector (CVE-2006-1937)
     * crash in H.245 dissector (CVE-2006-1937)
     * off-by-one error in OID printing routine (CVE-2006-1932)
     * buffer overflow in COPS dissector (CVE-2006-1935)
     * buffer overflow in ALCAP dissector (CVE-2006-1934)
     * crash in statistics counter (CVE-2006-1937)
     * crash with malformed capture (CVE-2006-1938)
     * crash with invalid display filter (CVE-2006-1939)
     * crash in general packet dissector (CVE-2006-1937)
     * crash in AIM dissector (CVE-2006-1937)
     * crash in RPC dissector (CVE-2006-1939)
     * crash in DCERPC dissector (CVE-2006-1939)
     * crash in ASN.1 dissector (CVE-2006-1939)
     * crash in SMB PIPE dissector (CVE-2006-1938)
     * excessive loop in BER dissector (CVE-2006-1933)
     * abort in SNDCP dissector (CVE-2006-1940)
     * buffer overrun in Network Instruments file code (CVE-2006-1934)
     * buffer overrun in NetXray/Windows Sniffer file code (CVE-2006-1934)
     * crash in GSM SMS dissector (CVE-2006-1939)
     * buffer overrun in ALCAP dissector (CVE-2006-1934)
     * buffer overrun in telnet dissector (CVE-2006-1936)
     * crash in ASN.1 based dissectors (CVE-2006-1939)
     * crash in DCERPC NT dissector (CVE-2006-1939)
     * crash in PER dissector (CVE-2006-1939)
   * debian/patches/04_drop-capabilities.dpatch: updated.
   * debian/control: added build-depends on libgnutls-dev since libgnutls can
     now be used for SSL support.
Files: 
 0a3949efd4307b7d09f42355733b85b3 886 net optional ethereal_0.99.0-1.dsc
 92490abe23df1b2078579c512c788f9d 11284145 net optional ethereal_0.99.0.orig.tar.gz
 755ae622f3613cd5d8bbedc799cc7e7f 144778 net optional ethereal_0.99.0-1.diff.gz
 7a3c6e1e13b8ca1ddefb659586f6bb6f 6841996 net optional ethereal-common_0.99.0-1_i386.deb
 df70779537dd51d78b73002d4f025861 577124 net optional ethereal_0.99.0-1_i386.deb
 3a702ff253b81b1c4c4961b9aa88d2fb 108732 net optional tethereal_0.99.0-1_i386.deb
 dec61c1284100463800f85486e7f1f78 176936 devel optional ethereal-dev_0.99.0-1_i386.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)

iD8DBQFEVxieoR3LsWeD7V4RAhlrAJ9OHqQlrqbVcGldFqUR9G+22FxVYgCfR5aR
HkNKBLJzxVT7/xU8JfEV21s=
=NpG3
-----END PGP SIGNATURE-----


Accepted:
ethereal-common_0.99.0-1_i386.deb
  to pool/main/e/ethereal/ethereal-common_0.99.0-1_i386.deb
ethereal-dev_0.99.0-1_i386.deb
  to pool/main/e/ethereal/ethereal-dev_0.99.0-1_i386.deb
ethereal_0.99.0-1.diff.gz
  to pool/main/e/ethereal/ethereal_0.99.0-1.diff.gz
ethereal_0.99.0-1.dsc
  to pool/main/e/ethereal/ethereal_0.99.0-1.dsc
ethereal_0.99.0-1_i386.deb
  to pool/main/e/ethereal/ethereal_0.99.0-1_i386.deb
ethereal_0.99.0.orig.tar.gz
  to pool/main/e/ethereal/ethereal_0.99.0.orig.tar.gz
tethereal_0.99.0-1_i386.deb
  to pool/main/e/ethereal/tethereal_0.99.0-1_i386.deb
News for package ethereal
