FEDORA-2018-bfdad62cd6

security update in Fedora 28 for wireshark

Status: stable a year ago

Removing dependency on wireshark metapackage from wireshark-cli


Added wireshark-qt to wireshark metapackage


  • New version 2.4.5
  • Contains fixes for CVE-2018-7419, CVE-2018-7418, CVE-2018-7417, CVE-2018-7420, CVE-2018-7320, CVE-2018-7336, CVE-2018-7337, CVE-2018-7334, CVE-2018-7335, CVE-2018-6836, CVE-2018-5335, CVE-2018-5334, CVE-2017-6014, CVE-2017-9616, CVE-2017-9617, CVE-2017-9766

How to install

sudo dnf upgrade --advisory=FEDORA-2018-bfdad62cd6

Comments 8

This update has been submitted for testing by mruprich.

This update has obsoleted wireshark-2.4.5-2.fc28, and has inherited its bugs and notes.

mruprich edited this update.

This update has been pushed to testing.

This update has reached 3 days in testing and can be pushed to stable now if the maintainer wishes

lgtm

karma: +1

This update has been submitted for stable by pwalter.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

#1425376 CVE-2017-6014 wireshark: Memory exhaustion/infinite loop via malformed STANAG 4607 capture file [fedora-all]
#1464052 CVE-2017-9616 CVE-2017-9617 CVE-2017-9766 wireshark: various flaws [fedora-all]
#1506859 wireshark meta package is missing wireshark-qt dependency
#1530895 CVE-2017-17997 wireshark: Misuse of NULL pointer in MRDISC dissector [fedora-all]
#1534362 CVE-2018-5334 wireshark: IxVeriWave file parser crash [fedora-all]
#1534365 CVE-2018-5335 wireshark: WCP dissector crash [fedora-all]
#1542775 wireshark-2.4.5 is available
#1543583 CVE-2018-6836 wireshark: free operation on an uninitialized memory address in wiretap/netmon.c [fedora-all]
#1548665 wireshark: Partial Fedora build flags injection
#1549246 CVE-2018-7335 wireshark: IEEE 802.11 dissector crash in airpdcap.c [fedora-all]
#1549256 CVE-2018-7334 wireshark: out of bounds access in UMTS MAC dissector in packet-umts_mac.c [fedora-all]
#1549266 CVE-2018-7337 wireshark: DOCSIS dissector crash in packet-docsis.c by injecting a malformed packet [fedora-all]
#1549271 CVE-2018-7336 wireshark: FCP dissector crash in packet-fcp.c [fedora-all]
#1549278 CVE-2018-7320 wireshark: Heap-based Buffer Overflow in SIGCOMP dissector crash in packet-sigcomp.c [fedora-all]
#1549286 CVE-2018-7420 wireshark: Pcapng file parser crash in pcapng.c [fedora-all]
#1549302 CVE-2018-7417 wireshark: IPMI dissector crash in packet-ipmi-picmg.c [fedora-all]
#1549306 CVE-2018-7418 wireshark: SIGCOMP dissector crash in packet-sigcomp.c [fedora-all]
#1549309 CVE-2018-7419 wireshark: NBAP dissector crash in nbap.cnf [fedora-all]
#1554818 tshark (wireshark-cli) should be installable without any GUI bits
#1555323 WTF is wireshark-qt pulled as dependency
Test Case Wireshark
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+1
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted a year ago
in testing a year ago
in stable a year ago
modified a year ago

Related Bugs 20

00 #1425376 CVE-2017-6014 wireshark: Memory exhaustion/infinite loop via malformed STANAG 4607 capture file [fedora-all]
00 #1464052 CVE-2017-9616 CVE-2017-9617 CVE-2017-9766 wireshark: various flaws [fedora-all]
00 #1506859 wireshark meta package is missing wireshark-qt dependency
00 #1530895 CVE-2017-17997 wireshark: Misuse of NULL pointer in MRDISC dissector [fedora-all]
00 #1534362 CVE-2018-5334 wireshark: IxVeriWave file parser crash [fedora-all]
00 #1534365 CVE-2018-5335 wireshark: WCP dissector crash [fedora-all]
00 #1542775 wireshark-2.4.5 is available
00 #1543583 CVE-2018-6836 wireshark: free operation on an uninitialized memory address in wiretap/netmon.c [fedora-all]
00 #1548665 wireshark: Partial Fedora build flags injection
00 #1549246 CVE-2018-7335 wireshark: IEEE 802.11 dissector crash in airpdcap.c [fedora-all]
00 #1549256 CVE-2018-7334 wireshark: out of bounds access in UMTS MAC dissector in packet-umts_mac.c [fedora-all]
00 #1549266 CVE-2018-7337 wireshark: DOCSIS dissector crash in packet-docsis.c by injecting a malformed packet [fedora-all]
00 #1549271 CVE-2018-7336 wireshark: FCP dissector crash in packet-fcp.c [fedora-all]
00 #1549278 CVE-2018-7320 wireshark: Heap-based Buffer Overflow in SIGCOMP dissector crash in packet-sigcomp.c [fedora-all]
00 #1549286 CVE-2018-7420 wireshark: Pcapng file parser crash in pcapng.c [fedora-all]
00 #1549302 CVE-2018-7417 wireshark: IPMI dissector crash in packet-ipmi-picmg.c [fedora-all]
00 #1549306 CVE-2018-7418 wireshark: SIGCOMP dissector crash in packet-sigcomp.c [fedora-all]
00 #1549309 CVE-2018-7419 wireshark: NBAP dissector crash in nbap.cnf [fedora-all]
00 #1554818 tshark (wireshark-cli) should be installable without any GUI bits
00 #1555323 WTF is wireshark-qt pulled as dependency

Automated Test Results

Test Cases

00 Test Case Wireshark