FEDORA-2018-89ed29a14b — security update for wireshark

obsolete

wireshark-2.4.5-2.fc27

FEDORA-2018-89ed29a14b created by mruprich 7 years ago for Fedora 27

Added wireshark-qt to wireshark metapackage

New version 2.4.5
Contains fixes for CVE-2018-7419, CVE-2018-7418, CVE-2018-7417, CVE-2018-7420, CVE-2018-7320, CVE-2018-7336, CVE-2018-7337, CVE-2018-7334, CVE-2018-7335, CVE-2018-6836, CVE-2018-5335, CVE-2018-5334, CVE-2017-6014, CVE-2017-9616, CVE-2017-9617, CVE-2017-9766

This update has been submitted for testing by mruprich.

7 years ago

This update has obsoleted wireshark-2.4.5-1.fc27, and has inherited its bugs and notes.

7 years ago

This update has been pushed to testing.

7 years ago

hreindl commented & provided feedback 7 years ago

karma

either give up sub-packaging at all or do not pull QT-dependency-chain on headless servers - https://bugzilla.redhat.com/show_bug.cgi?id=1555323

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

7 years ago

hreindl commented & provided feedback 7 years ago

karma

and the bug is a stupid "Requires: %{name} = %{epoch}:%{version}-%{release}" in the "cli" section which means "wireshark-cli explicitly depends on the wireshark metapackage" which is exactly the wrong direction - hence do not pollute rpm-specs with explicit Requires until you have a damned good reason

a sane dep-chain would be:

wireshark Requires: wireshark-qt wiresshark-qt Reuires: wireshark-cli

and nothing else because that way you won't need both of the follwoing because "%{name}-qt" would implicit pull "%{name}-cli" and "%{name}-cli" would pull nothing as intended

Requires: %{name}-cli = %{epoch}:%{version}-%{release} Requires: %{name}-qt = %{epoch}:%{version}-%{release}

alciregi commented & provided feedback 7 years ago

karma

WFM

This update has been obsoleted by wireshark-2.4.5-3.fc27.

7 years ago

Please log in to add feedback.

Metadata

Type

security

Karma

Signed

Content Type

RPM

Test Gating

passed

Autopush Settings

Unstable by Karma

-3

Stable by Karma

disabled

Stable by Time

disabled

Thresholds

Minimum Karma

Minimum Testing

7 days

Dates

submitted

7 years ago

in testing

7 years ago

Builds

wireshark-2.4.5-2.fc27

BZ#1425376 CVE-2017-6014 wireshark: Memory exhaustion/infinite loop via malformed STANAG 4607 capture file [fedora-all]

BZ#1464052 CVE-2017-9616 CVE-2017-9617 CVE-2017-9766 wireshark: various flaws [fedora-all]

BZ#1506859 wireshark meta package is missing wireshark-qt dependency

BZ#1534362 CVE-2018-5334 wireshark: IxVeriWave file parser crash [fedora-all]

BZ#1534365 CVE-2018-5335 wireshark: WCP dissector crash [fedora-all]

BZ#1542775 wireshark-2.4.5 is available

BZ#1543583 CVE-2018-6836 wireshark: free operation on an uninitialized memory address in wiretap/netmon.c [fedora-all]

BZ#1548665 wireshark: Partial Fedora build flags injection

BZ#1549246 CVE-2018-7335 wireshark: IEEE 802.11 dissector crash in airpdcap.c [fedora-all]

BZ#1549256 CVE-2018-7334 wireshark: out of bounds access in UMTS MAC dissector in packet-umts_mac.c [fedora-all]

BZ#1549266 CVE-2018-7337 wireshark: DOCSIS dissector crash in packet-docsis.c by injecting a malformed packet [fedora-all]

BZ#1549271 CVE-2018-7336 wireshark: FCP dissector crash in packet-fcp.c [fedora-all]

BZ#1549278 CVE-2018-7320 wireshark: Heap-based Buffer Overflow in SIGCOMP dissector crash in packet-sigcomp.c [fedora-all]

BZ#1549286 CVE-2018-7420 wireshark: Pcapng file parser crash in pcapng.c [fedora-all]

BZ#1549302 CVE-2018-7417 wireshark: IPMI dissector crash in packet-ipmi-picmg.c [fedora-all]

BZ#1549306 CVE-2018-7418 wireshark: SIGCOMP dissector crash in packet-sigcomp.c [fedora-all]

BZ#1549309 CVE-2018-7419 wireshark: NBAP dissector crash in nbap.cnf [fedora-all]

wireshark-2.4.5-2.fc27

Automated Test Results

passed

Test Cases


0	0	Test Case Wireshark