5164 – wireshark new security vulnerabilities fixed in 1.4.12

Bug 5164 - wireshark new security vulnerabilities fixed in 1.4.12

Summary: wireshark new security vulnerabilities fixed in 1.4.12

Status:	RESOLVED FIXED

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	1
Hardware:	All Linux

Priority:	Normal Severity: normal
Target Milestone:	---
Assignee:	QA Team
QA Contact:

URL:
Whiteboard:
Keywords:	validated_update

Depends on:
Blocks:

Reported:	2012-03-29 21:02 CEST by Florian Hubold
Modified:	2012-04-03 05:20 CEST (History)
CC List:	4 users (show)

See Also:
Source RPM:
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Florian Hubold 2012-03-29 21:02:43 CEST

There is now wireshark-1.4.12-1.mga1 in core/updates_testing to validate
-------------------------------------------------------


Suggested advisory:
-------------------
  o The ANSI A dissector could dereference a NULL pointer and crash
    ( http://www.wireshark.org/security/wnpa-sec-2012-04.html )
  o The pcap and pcap-ng file parsers could crash trying to read ERF data
    ( http://www.wireshark.org/security/wnpa-sec-2012-06.html )
  o The MP2T dissector could try to allocate too much memory and crash
    ( http://www.wireshark.org/security/wnpa-sec-2012-07.html )
  o fixes 13 various other bugs (not security-related)

Other fixes in this release:

  o fixes 13 various other bugs (not security-related)

-------------------------------------------------------

Steps to reproduce:

- install/update to update candidate
- POCs/capture files available from following bug reports:
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6823
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6804
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=6833
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5939
(this last one is not security-related, but still a crasher bug)

Comment 1 Olivier Delaune 2012-03-30 07:35:26 CEST

Testing on 64-bits system.
Basic tests performed (packet capture, ...). It is working well.

CC: (none) => olivier.delaune

Comment 2 Dave Hodgins 2012-03-30 09:13:23 CEST

Validating the update.

Could someone from the sysadmin team push the srpm
wireshark-1.4.12-1.mga1.src.rpm
from Core Updates Testing to Core Updates.

Advisory:
  o The ANSI A dissector could dereference a NULL pointer and crash
    ( http://www.wireshark.org/security/wnpa-sec-2012-04.html )
  o The pcap and pcap-ng file parsers could crash trying to read ERF data
    ( http://www.wireshark.org/security/wnpa-sec-2012-06.html )
  o The MP2T dissector could try to allocate too much memory and crash
    ( http://www.wireshark.org/security/wnpa-sec-2012-07.html )
  o fixes 13 various other bugs (not security-related)

Other fixes in this release:

  o fixes 13 various other bugs (not security-related)

https://bugs.mageia.org/show_bug.cgi?id=5164

Keywords: (none) => validated_update
CC: (none) => davidwhodgins, sysadmin-bugs

Comment 3 Thomas Backlund 2012-04-03 05:20:56 CEST

update pushed

Status: NEW => RESOLVED
CC: (none) => tmb
Resolution: (none) => FIXED

Note You need to log in before you can comment on or make changes to this bug.