Upstream has released new versions on December 29: https://www.wireshark.org/news/20211229.html Updated package uploaded for Mageia 8. Advisory: ======================== Updated wireshark packages fix security vulnerabilities: Sysdig Event dissector crash (CVE-2021-4181). RFC 7468 file parser infinite loop (CVE-2021-4182). BitTorrent DHT dissector infinite loop (CVE-2021-4184). RTMPT dissector infinite loop (CVE-2021-4185). Gryphon dissector crash (CVE-2021-4186). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4181 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4182 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4184 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4185 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4186 https://www.wireshark.org/security/wnpa-sec-2021-16 https://www.wireshark.org/security/wnpa-sec-2021-17 https://www.wireshark.org/security/wnpa-sec-2021-18 https://www.wireshark.org/security/wnpa-sec-2021-20 https://www.wireshark.org/security/wnpa-sec-2021-21 https://www.wireshark.org/docs/relnotes/wireshark-3.4.11.html https://www.wireshark.org/news/20211229.html ======================== Updated packages in core/updates_testing: ======================== wireshark-3.4.11-1.mga8 libwireshark-devel-3.4.11-1.mga8 wireshark-tools-3.4.11-1.mga8 libwiretap11-3.4.11-1.mga8 tshark-3.4.11-1.mga8 dumpcap-3.4.11-1.mga8 rawshark-3.4.11-1.mga8 libwsutil12-3.4.11-1.mga8 libwireshark14-3.4.11-1.mga8 from wireshark-3.4.11-1.mga8.src.rpm
Testing procedure: https://wiki.mageia.org/en/QA_procedure:Wireshark
Keywords: (none) => has_procedure
MGA8-64 Plasma on Lenovo B50 No installation issues Followed my previous bug 29088 to avoid the niggles encountered there. $ wireshark -n -w wiresharktest.pcapng File could be saved OK. tshark -nr wiresharktest.pcapng | more 1 0.000000000 34:31:c4:80:a9:b4 → ff:ff:ff:ff:ff:ff HomePlug AV 60 Qualcomm Atheros, GET_SW.REQ (Get Device/SW Version Request) 2 0.000000049 34:31:c4:80:a9:b4 → ff:ff:ff:ff:ff:ff 0x8912 60 Ethernet II 3 1.945818703 34:31:c4:80:a9:b4 → ff:ff:ff:ff:ff:ff HomePlug AV 60 Qualcomm Atheros, GET_SW.REQ (Get Device/SW Version Request) 4 1.945818756 34:31:c4:80:a9:b4 → ff:ff:ff:ff:ff:ff 0x8912 60 Ethernet II 5 3.993722472 34:31:c4:80:a9:b4 → ff:ff:ff:ff:ff:ff HomePlug AV 60 Qualcomm Atheros, GET_SW.REQ (Get Device/SW Version Request) 6 3.993722522 34:31:c4:80:a9:b4 → ff:ff:ff:ff:ff:ff 0x8912 60 Ethernet II 7 5.457224078 192.168.2.5 → 185.89.20.5 NTP 90 NTP Version 4, client 8 5.470660784 185.89.20.5 → 192.168.2.5 NTP 90 NTP Version 4, server 9 5.696666694 192.168.2.5 → 162.159.200.1 NTP 90 NTP Version 4, client etc..... $ editcap -r wiresharktest.pcapng wiresharktest50 1-50 $ mergecap -v -w wiresharkmerged wiresharktest.pcapng wiresharktest50 mergecap: wiresharktest.pcapng is type Wireshark/... - pcapng. mergecap: wiresharktest50 is type Wireshark/... - pcapng. mergecap: selected frame_type Ethernet (ether) mergecap: ready to merge records Record: 1 Record: 2 Record: 3 Record: 4 etc .... until at the end Record: 219 Record: 220 mergecap: merging complete $ randpkt -b 500 -t dns wireshark_dns.pcap $ capinfos wiresharktest50 File name: wiresharktest50 File type: Wireshark/... - pcapng File encapsulation: Ethernet File timestamp precision: nanoseconds (9) Packet size limit: file hdr: (not set) Number of packets: 50 File size: 5.264 bytes Data size: 3.387 bytes Capture duration: 35,943653142 seconds First packet time: 2021-12-31 10:05:13,844228163 Last packet time: 2021-12-31 10:05:49,787881305 Data byte rate: 94 bytes/s Data bit rate: 753 bits/s Average packet size: 67,74 bytes Average packet rate: 1 packets/s SHA256: 5f26086a4550a7f05c2ac333c2558342912054126f57a3b19a7631fda5669857 RIPEMD160: 39fc5a02d6011779fc1d6a8d63cc1425f255b365 SHA1: ec5eccb6786658eae231f98515605a3991bcf158 Strict time order: True Capture hardware: Intel(R) Core(TM) i5-5200U CPU @ 2.20GHz (with SSE4.2) Capture oper-sys: Linux 5.15.11-server-3.mga8 Capture application: Dumpcap (Wireshark) 3.4.11 (Git commit 482f742aac70) Number of interfaces in file: 1 Interface #0 info: Name = wlp9s0 Encapsulation = Ethernet (1 - ether) Capture length = 262144 Time precision = nanoseconds (9) Time ticks per second = 1000000000 Time resolution = 0x09 Operating system = Linux 5.15.11-server-3.mga8 Number of stat entries = 0 Number of packets = 50 All looks good.
CC: (none) => herman.viaeneWhiteboard: (none) => MGA8-64-OK
Validating. Advisory in Comment 0.
CC: (none) => andrewsfarm, sysadmin-bugsKeywords: (none) => validated_update
Keywords: (none) => advisoryCC: (none) => davidwhodgins
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0004.html
Status: NEW => RESOLVEDResolution: (none) => FIXED