Ubuntu
wireshark package

Change logs for wireshark source package in Bionic

  1. Bionic (18.04)
  2. Change log 
  • wireshark (2.6.10-1~ubuntu18.04.0) bionic-security; urgency=medium

  * Rebuild for Bionic to fix multiple security issues

wireshark (2.6.10-1) unstable; urgency=medium

  * New upstream version 2.6.10
     - security fixes:
       - ASN.1 BER and related dissectors crash (CVE-2019-13619)
     - fix QIcon crash on exit on Ubuntu 16.04 with Qt 5.5.1 (LP: #1803808)
  * debian/gitlab-ci.yml: User minimal reference configuration

wireshark (2.6.9-1) unstable; urgency=medium

  * Acknowledge NMU
  * New upstream version 2.6.9
  * Drop obsolete CVE-2019-12295.patch
  * Refresh patches

wireshark (2.6.8-1.1) unstable; urgency=medium

  * Non-maintainer upload.
  * CVE-2019-12295
    In Wireshark 3.0.0 to 3.0.1, 2.6.0 to 2.6.8, and 2.4.0 to 2.4.14,
    the dissection engine could crash. This was addressed in
    epan/packet.c by restricting the number of layers and
    consequently limiting recursion. (Closes: #929446)

 -- Balint Reczey <email address hidden>  Thu, 05 Sep 2019 21:43:09 +0200
  • wireshark (2.6.8-1~ubuntu18.04.0) bionic-security; urgency=medium

  * Rebuild for Bionic to fix multiple security issues

wireshark (2.6.8-1) unstable; urgency=medium

  * New upstream version 2.6.8
    - security fixes (Closes: #926718):
      - NetScaler file parser crash. (CVE-2019-10895)
      - SRVLOC dissector crash. (CVE-2019-10899)
      - GSS-API dissector crash. (CVE-2019-10894)
      - DOF dissector crash. (CVE-2019-10896)
      - LDSS dissector crash. (CVE-2019-10901)
      - DCERPC SPOOLSS dissector crash. (CVE-2019-10903)

wireshark (2.6.7-1) unstable; urgency=medium

  [ Balint Reczey ]
  * Drop unapplied backport-to-old-gnutls.patch
  * Ship captype and randpkt in wireshark-common (Closes: #919027)
  * Override a few Lintian issues
  * New upstream version 2.6.7
    - security fixes (Closes: #923611):
      - ASN.1 BER and related dissectors crash. (CVE-2019-9209)
      - TCAP dissector crash. (CVE-2019-9208)
      - RPCAP dissector crash. (CVE-2019-9214)

  [ Joe Hansen ]
  * Danish debconf translate translation update (Closes: #923064)

wireshark (2.6.6-1) unstable; urgency=medium

  [ Jean-Philippe MENGUAL ]
  * French debconf translation update (Closes: #915161)

  [ Balint Reczey ]
  * New upstream version 2.6.6
    - security fixes:
      - The P_MUL dissector could crash. (CVE-2019-5717)
      - The RTSE dissector and other dissectors could crash. (CVE-2019-5718)
      - The ISAKMP dissector could crash. (CVE-2019-5719)
      - The 6LoWPAN dissector could crash. (CVE-2019-5716)
  * Mention GPLv3+ code snippet in tools/pidl/idl.yp (Closes: #918089)

 -- Balint Reczey <email address hidden>  Mon, 13 May 2019 20:32:03 +0200
  • wireshark (2.6.6-1~ubuntu18.04.0) bionic-security; urgency=medium

  * Rebuild for Bionic to fix multiple security issues

wireshark (2.6.6-1) unstable; urgency=medium

  [ Jean-Philippe MENGUAL ]
  * French debconf translation update (Closes: #915161)

  [ Balint Reczey ]
  * New upstream version 2.6.6
    - security fixes:
      - The P_MUL dissector could crash. (CVE-2019-5717)
      - The RTSE dissector and other dissectors could crash. (CVE-2019-5718)
      - The ISAKMP dissector could crash. (CVE-2019-5719)
      - The 6LoWPAN dissector could crash. (CVE-2019-5716)
  * Mention GPLv3+ code snippet in tools/pidl/idl.yp (Closes: #918089)

 -- Balint Reczey <email address hidden>  Sat, 19 Jan 2019 12:23:53 +0700
  • wireshark (2.6.5-1~ubuntu18.04.0) bionic-security; urgency=medium

  * Rebuild for Bionic to fix multiple security issues

 -- Balint Reczey <email address hidden>  Wed, 05 Dec 2018 12:40:12 +0100
  • wireshark (2.6.4-2~ubuntu18.04.0) bionic-security; urgency=medium

  * Rebuild for Bionic to fix multiple security issues

 -- Balint Reczey <email address hidden>  Sat, 17 Nov 2018 12:10:57 +0100
  • wireshark (2.6.3-1~ubuntu18.04.1) bionic-security; urgency=medium

  * No change rebuild for the -security pocket

 -- Mike Salvatore <email address hidden>  Fri, 12 Oct 2018 14:23:31 +0200
  • wireshark (2.4.5-1) unstable; urgency=medium

  * New upstream release
    - release notes:
      https://www.wireshark.org/docs/relnotes/wireshark-2.4.5.html
    - security fixes:
      - The SIGCOMP dissector could crash (CVE-2018-7320, CVE-2018-7418)
      - Multiple dissectors could go into large infinite loops.
        All ASN.1 BER dissectors,  along with the DICOM, DMP, LLTD, OpenFlow,
        RELOAD, RPCoRDMA, RPKI-Router, S7COMM, SCCP, Thread, Thrift, USB,
        and WCCP dissectors were susceptible. (CVE-2018-7321, CVE-2018-7322,
        CVE-2018-7323, CVE-2018-7324, CVE-2018-7325, CVE-2018-7326,
        CVE-2018-7327, CVE-2018-7328, CVE-2018-7329, CVE-2018-7330,
        CVE-2018-7331, CVE-2018-7332, CVE-2018-7333)
      - The UMTS MAC dissector could crash (CVE-2018-7334)
      - The IEEE 802.11 dissector could crash (CVE-2018-7335)
      - The FCP dissector could crash (CVE-2018-7336)
      - The DOCSIS dissector could crash (CVE-2018-7337)
      - The IPMI dissector could crash (CVE-2018-7417)
      - The NBAP disssector could crash (CVE-2018-7419)
      - The pcapng file parser could crash (CVE-2018-7420)
  * Only recommend libjs-openlayers (Closes: #888744)

 -- Balint Reczey <email address hidden>  Mon, 26 Feb 2018 16:45:39 +0700
  • wireshark (2.4.4-1) unstable; urgency=medium

  * New upstream release
    - release notes:
      https://www.wireshark.org/docs/relnotes/wireshark-2.4.4.html
    - security fixes:
      - Multiple dissectors could crash (CVE-2018-5336)
      - The IxVeriWave file parser could crash (CVE-2018-5334)
      - The WCP dissector could crash (CVE-2018-5335)
      - Prior to this release dumpcap enabled the Linux kernel’s BPF JIT
        compiler via the net.core.bpf_jit_enable sysctl. This could make
        systems more vulnerable to Spectre variant 1 (CVE-2017-5753) and
        this feature has been removed (Closes: #886619)
      - There was a potential buffer underflow in File_read_line function
        in epan/wslua/wslua_file.c file (CVE-2017-17935) (Closes: #885831)
  * Update symbols files
  * Fix dh_clean target in debian/rules
  * Change wireshark-doc's priority to optional from extra following Policy
    change

 -- Balint Reczey <email address hidden>  Sat, 13 Jan 2018 01:31:25 +0100
  • wireshark (2.4.3-1) unstable; urgency=medium

  * Show version info instead of just "Git Rev Unknown from unknown"
  * New upstream release
    - release notes:
      https://www.wireshark.org/docs/relnotes/wireshark-2.4.3.html
    - security fixes:
      - The IWARP_MPA dissector could crash (CVE-2017-17084)
      - The NetBIOS dissector could crash (CVE-2017-17083)
        Discovered by Kamil Frankowicz
      - The CIP Safety dissector could crash (CVE-2017-17085)

 -- Balint Reczey <email address hidden>  Sun, 03 Dec 2017 22:49:15 +0100
  • wireshark (2.4.2-1) unstable; urgency=medium

  [ Pedro Ribeiro ]
  * Updated Portuguese translation for debconf messages (Closes: #874522)

  [ Balint Reczey ]
  * New upstream release
    - release notes:
      https://www.wireshark.org/docs/relnotes/wireshark-2.4.2.html
    - security fixes:
      - BT ATT dissector crash (CVE-2017-15192)
      - MBIM dissector crash (CVE-2017-15193)
      - DMP dissector crash (CVE-2017-15191)
      - RTSP dissector crash (CVE-2017-15190)
      - DOCSIS infinite loop  (CVE-2017-15189)
  [ Helge Kreutzmann ]
  * Updated German translation for debconf messages (Closes: #877636)

  [ Frans Spiesschaert ]
  * Updated Dutch translation for debconf messages (Closes: #877244)

 -- Balint Reczey <email address hidden>  Wed, 11 Oct 2017 23:41:59 +0200