Bug 26649 - wireshark new release 3.0.11 fixes security issue
Summary: wireshark new release 3.0.11 fixes security issue
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 7
Hardware: All Linux
Priority: Normal normal
Target Milestone: ---
Assignee: QA Team
QA Contact: Sec team
URL:
Whiteboard: MGA7-64-OK
Keywords: advisory, has_procedure, validated_update
Depends on:
Blocks:
 
Reported: 2020-05-20 03:47 CEST by David Walser
Modified: 2020-05-24 20:06 CEST (History)
4 users (show)

See Also:
Source RPM: wireshark-3.0.10-1.mga7.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2020-05-20 03:47:27 CEST 
Upstream has released new versions today (May 19):
https://www.wireshark.org/news/20200519.html

Updated package uploaded for Mageia 7.

Advisory:
========================

Updated wireshark packages fix security vulnerability:

The NFS dissector could crash.

References:
https://www.wireshark.org/security/wnpa-sec-2020-08
https://www.wireshark.org/docs/relnotes/wireshark-3.0.11.html
https://www.wireshark.org/news/20200519.html
========================

Updated packages in core/updates_testing:
========================
wireshark-3.0.11-1.mga7
libwireshark12-3.0.11-1.mga7
libwiretap9-3.0.11-1.mga7
libwscodecs2-3.0.11-1.mga7
libwsutil11-3.0.11-1.mga7
libwireshark-devel-3.0.11-1.mga7
wireshark-tools-3.0.11-1.mga7
tshark-3.0.11-1.mga7
rawshark-3.0.11-1.mga7
dumpcap-3.0.11-1.mga7

from wireshark-3.0.11-1.mga7.src.rpm
Comment 1 David Walser 2020-05-20 03:47:42 CEST 
Testing procedure:
https://wiki.mageia.org/en/QA_procedure:Wireshark

Keywords: (none) => has_procedure

Comment 2 Herman Viaene 2020-05-21 13:43:36 CEST 
MGA7-64 Plasma on Lenovo B50
Installation: the package to be installed is libwsutil10, not libwsutil11.
Ref bug 25436 for testing. Wiki is somewhat outdated.
$ wireshark -n -i wlp9s0 -w wiresharktest
that gave me the file to proceed
$ tshark -nr wiresharktest
dumped the whole file on stdout
$ editcap -r wiresharktest wiresharktest50 1-50
made the smaller file OK
$ mergecap -v -w wiresharkmerged wiresharktest wiresharktest50
mergecap: wiresharktest is type Wireshark/... - pcapng.
mergecap: wiresharktest50 is type Wireshark/... - pcapng.
mergecap: selected frame_type Ethernet (ether)
mergecap: ready to merge records
Record: 1
Record: 2
Record: 3
etc ..... til
Record: 15648
Record: 15649
mergecap: merging complete
$ randpkt -b 500 -t dns wireshark_dns.pcap
created the file OK
$ wireshark wireshark_dns.pcap
displayed the file OK
$ capinfos wiresharktest50
File name:           wiresharktest50
File type:           Wireshark/... - pcapng
File encapsulation:  Ethernet
File timestamp precision:  nanoseconds (9)
Packet size limit:   file hdr: (not set)
etc.... til
Interface #0 info:
                     Name = wlp9s0
                     Encapsulation = Ethernet (1 - ether)
                     Capture length = 262144
                     Time precision = nanoseconds (9)
                     Time ticks per second = 1000000000
                     Time resolution = 0x09
                     Operating system = Linux 5.6.8-desktop-1.mga7
                     Number of stat entries = 0
                     Number of packets = 50

All OK.

Whiteboard: (none) => MGA7-64-OK
CC: (none) => herman.viaene

Comment 3 Thomas Andrews 2020-05-21 14:07:40 CEST 
Validating. Advisory in Comment 0.

CC: (none) => andrewsfarm, sysadmin-bugs
Keywords: (none) => validated_update

Thomas Backlund 2020-05-24 18:01:29 CEST

Keywords: (none) => advisory
CC: (none) => tmb

Comment 4 Mageia Robot 2020-05-24 20:06:43 CEST 
An update for this issue has been pushed to the Mageia Updates repository.

https://advisories.mageia.org/MGASA-2020-0225.html

Resolution: (none) => FIXED
Status: NEW => RESOLVED
Note You need to log in before you can comment on or make changes to this bug.