security update in Fedora 27 for wireshark

Status: obsolete

Added wireshark-qt to wireshark metapackage

  • New version 2.4.5
  • Contains fixes for CVE-2018-7419, CVE-2018-7418, CVE-2018-7417, CVE-2018-7420, CVE-2018-7320, CVE-2018-7336, CVE-2018-7337, CVE-2018-7334, CVE-2018-7335, CVE-2018-6836, CVE-2018-5335, CVE-2018-5334, CVE-2017-6014, CVE-2017-9616, CVE-2017-9617, CVE-2017-9766

Comments 8

This update has been submitted for testing by mruprich.

This update has obsoleted wireshark-2.4.5-1.fc27, and has inherited its bugs and notes.

This update has been pushed to testing.

either give up sub-packaging at all or do not pull QT-dependency-chain on headless servers - https://bugzilla.redhat.com/show_bug.cgi?id=1555323

karma: -1

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

and the bug is a stupid "Requires: %{name} = %{epoch}:%{version}-%{release}" in the "cli" section which means "wireshark-cli explicitly depends on the wireshark metapackage" which is exactly the wrong direction - hence do not pollute rpm-specs with explicit Requires until you have a damned good reason

a sane dep-chain would be:

wireshark Requires: wireshark-qt wiresshark-qt Reuires: wireshark-cli

and nothing else because that way you won't need both of the follwoing because "%{name}-qt" would implicit pull "%{name}-cli" and "%{name}-cli" would pull nothing as intended

Requires: %{name}-cli = %{epoch}:%{version}-%{release} Requires: %{name}-qt = %{epoch}:%{version}-%{release}

karma: -1

This update has been obsoleted by wireshark-2.4.5-3.fc27.

Add Comment & Feedback

Please login to add feedback.

Content Type
Test Gating
Submitted by
Update Type
Update Severity
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Autopush (time)
submitted 2 years ago
in testing 2 years ago

Related Bugs 17

00 #1425376 CVE-2017-6014 wireshark: Memory exhaustion/infinite loop via malformed STANAG 4607 capture file [fedora-all]
00 #1464052 CVE-2017-9616 CVE-2017-9617 CVE-2017-9766 wireshark: various flaws [fedora-all]
00 #1506859 wireshark meta package is missing wireshark-qt dependency
00 #1534362 CVE-2018-5334 wireshark: IxVeriWave file parser crash [fedora-all]
00 #1534365 CVE-2018-5335 wireshark: WCP dissector crash [fedora-all]
00 #1542775 wireshark-2.4.5 is available
00 #1543583 CVE-2018-6836 wireshark: free operation on an uninitialized memory address in wiretap/netmon.c [fedora-all]
00 #1548665 wireshark: Partial Fedora build flags injection
00 #1549246 CVE-2018-7335 wireshark: IEEE 802.11 dissector crash in airpdcap.c [fedora-all]
00 #1549256 CVE-2018-7334 wireshark: out of bounds access in UMTS MAC dissector in packet-umts_mac.c [fedora-all]
00 #1549266 CVE-2018-7337 wireshark: DOCSIS dissector crash in packet-docsis.c by injecting a malformed packet [fedora-all]
00 #1549271 CVE-2018-7336 wireshark: FCP dissector crash in packet-fcp.c [fedora-all]
00 #1549278 CVE-2018-7320 wireshark: Heap-based Buffer Overflow in SIGCOMP dissector crash in packet-sigcomp.c [fedora-all]
00 #1549286 CVE-2018-7420 wireshark: Pcapng file parser crash in pcapng.c [fedora-all]
00 #1549302 CVE-2018-7417 wireshark: IPMI dissector crash in packet-ipmi-picmg.c [fedora-all]
00 #1549306 CVE-2018-7418 wireshark: SIGCOMP dissector crash in packet-sigcomp.c [fedora-all]
00 #1549309 CVE-2018-7419 wireshark: NBAP dissector crash in nbap.cnf [fedora-all]

Automated Test Results

Test Cases

00 Test Case Wireshark