Upstream has released version 2.0.6 on September 8: https://www.wireshark.org/news/20160908.html Debian has issued an advisory for this on September 20: https://www.debian.org/security/2016/dsa-3671 Updated package uploaded for Mageia 5. Here's a preliminary advisory without the CVEs. I don't know where Debian got them from, but they only had 5 and there are 6 security issues fixed here. Advisory: ======================== Updated wireshark packages fix security vulnerabilities: The wireshark package has been updated to version 2.0.5, which fixes several security issues where a malformed packet trace could cause it to crash, and fixes several other bugs as well. See the release notes for details. References: https://www.wireshark.org/security/wnpa-sec-2016-50.html https://www.wireshark.org/security/wnpa-sec-2016-51.html https://www.wireshark.org/security/wnpa-sec-2016-52.html https://www.wireshark.org/security/wnpa-sec-2016-53.html https://www.wireshark.org/security/wnpa-sec-2016-54.html https://www.wireshark.org/security/wnpa-sec-2016-55.html https://www.wireshark.org/docs/relnotes/wireshark-2.0.6.html https://www.wireshark.org/news/20160908.html ======================== Updated packages in core/updates_testing: ======================== wireshark-2.0.6-1.mga5 libwireshark6-2.0.6-1.mga5 libwiretap5-2.0.6-1.mga5 libwsutil6-2.0.6-1.mga5 libwireshark-devel-2.0.6-1.mga5 wireshark-tools-2.0.6-1.mga5 tshark-2.0.6-1.mga5 rawshark-2.0.6-1.mga5 dumpcap-2.0.6-1.mga5 from wireshark-2.0.6-1.mga5.src.rpm
Testing procedure: https://wiki.mageia.org/en/QA_procedure:Wireshark
Whiteboard: (none) => has_procedure
Fixing the package list, libwireshark's major has changed from 6 to 7. Updated packages in core/updates_testing: ======================== wireshark-2.0.6-1.mga5 libwireshark7-2.0.6-1.mga5 libwiretap5-2.0.6-1.mga5 libwsutil6-2.0.6-1.mga5 libwireshark-devel-2.0.6-1.mga5 wireshark-tools-2.0.6-1.mga5 tshark-2.0.6-1.mga5 rawshark-2.0.6-1.mga5 dumpcap-2.0.6-1.mga5 from wireshark-2.0.6-1.mga5.src.rpm
In VirtualBox, M5, KDE, 32-bit Package(s) under test: wireshark libwireshark6 libwiretap5 libwsutil6 wireshark-tools tshark Assign wilcal to the wireshark group, restart wilcal. default install of wireshark libwireshark6 libwiretap5 libwsutil6 wireshark-tools tshark: [root@localhost wilcal]# urpmi wireshark Package wireshark-2.0.5-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi libwireshark6 Package libwireshark6-2.0.5-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi libwiretap5 Package libwiretap5-2.0.5-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi libwsutil6 Package libwsutil6-2.0.5-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi wireshark-tools Package wireshark-tools-2.0.5-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi tshark Package tshark-2.0.5-1.mga5.i586 is already installed Running wireshark I can capture and save to a file (test01.pcapng) traffic on enp0s3. Close wireshark. Reopen test01.pcapng with wireshark and review the data. wireshark tools like tshark work: tshark >> test01.txt works Filter: ip.src == 192.168.1.143 works ( this system ) install wireshark libwireshark6 libwiretap5 libwsutil6 wireshark-tools & tshark from updates_testing [root@localhost wilcal]# urpmi wireshark Package wireshark-2.0.6-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi libwireshark6 Package libwireshark6-2.0.5-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi libwiretap5 Package libwiretap5-2.0.6-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi libwsutil6 Package libwsutil6-2.0.6-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi wireshark-tools Package wireshark-tools-2.0.6-1.mga5.i586 is already installed [root@localhost wilcal]# urpmi tshark Package tshark-2.0.6-1.mga5.i586 is already installed Running wireshark I can capture and save to a file (test02.pcapng) traffic on enp0s3. Close wireshark. Reopen test01.pcapng & test02.pcapng with wireshark and review the data. wireshark tools like tshark work: tshark >> test02.txt works Filter: ip.src == 192.168.1.143 works ( this system )
CC: (none) => wilcal.int
Whiteboard: has_procedure => has_procedure MGA5-32-OK
In VirtualBox, M5, KDE, 64-bit Package(s) under test: wireshark lib64wireshark6 lib64wiretap5 lib64wsutil6 wireshark-tools tshark Assign wilcal to the wireshark group, restart wilcal. default install of wireshark lib64wireshark6 lib64wiretap5 lib64wsutil6 wireshark-tools tshark: [root@localhost wilcal]# urpmi wireshark Package wireshark-2.0.5-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi lib64wireshark6 Package lib64wireshark6-2.0.5-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi lib64wiretap5 Package lib64wiretap5-2.0.5-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi lib64wsutil6 Package lib64wsutil6-2.0.5-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi wireshark-tools Package wireshark-tools-2.0.5-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi tshark Package tshark-2.0.5-1.mga5.x86_64 is already installed Running wireshark I can capture and save to a file (test01.pcapng) traffic on enp0s3. Close wireshark. Reopen test01.pcapng with wireshark and review the data. wireshark tools like tshark work: tshark >> test01.txt works Filter: ip.src == 192.168.1.141 works ( this system ) install wireshark lib64wireshark6 lib64wiretap5 lib64wsutil6 wireshark-tools & tshark from updates_testing [root@localhost wilcal]# urpmi wireshark Package wireshark-2.0.6-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi lib64wireshark6 Package lib64wireshark6-2.0.5-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi lib64wiretap5 Package lib64wiretap5-2.0.6-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi lib64wsutil6 Package lib64wsutil6-2.0.6-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi wireshark-tools Package wireshark-tools-2.0.6-1.mga5.x86_64 is already installed [root@localhost wilcal]# urpmi tshark Package tshark-2.0.6-1.mga5.x86_64 is already installed Running wireshark I can capture and save to a file (test02.pcapng) traffic on enp0s3. Close wireshark. Reopen test01.pcapng & test02.pcapng with wireshark and review the data. wireshark tools like tshark work: tshark >> test02.txt works Filter: ip.src == 192.168.1.141 works ( this system )
Whiteboard: has_procedure MGA5-32-OK => has_procedure MGA5-32-OK MGA5-64-OK
This update works fine. Testing complete for MGA5, 32-bit & 64-bit Validating the update. Could someone from the sysadmin team push to updates. Thanks
Keywords: (none) => validated_updateCC: (none) => sysadmin-bugs
Please add 19442.adv
CC: (none) => mageia
An update for this issue has been pushed to the Mageia Updates repository. http://advisories.mageia.org/MGASA-2016-0321.html
Status: NEW => RESOLVEDResolution: (none) => FIXED
Another CVE: http://lwn.net/Vulnerabilities/701997/
all seems fixed in 2.0.6. you mean we need to update 19442.adv ?
(In reply to Nicolas Lécureuil from comment #9) > all seems fixed in 2.0.6. > > > you mean we need to update 19442.adv ? Yes, but I updated it already :o).