Please merge wireshark 1.0.7-1 (universe) from Debian unstable (main)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
wireshark (Ubuntu) |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: wireshark
this version fixes a few security issues, including an arbitrary code execution and denial of service vulnerabilities. please upgrade. changelog: http://
wireshark (1.0.7-1) unstable; urgency=low
* New upstream release 1.0.7
- release notes:
http://
- security fixes:
- The PROFINET dissector was vulnerable to a format string
overflow. (CVE-2009-1210)
- The LDAP dissector could crash on Windows. (CVE-2009-1267)
- The Check Point High-Availability Protocol (CPHAP) dissector
could crash. (CVE-2009-1268)
- Wireshark could crash while loading a Tektronix .rf5 file
* update standards-version to 3.8.1
* add 21_dumpcap.dpatch with patch from Rob Leslie <email address hidden>
that should avoid dumpcap seeing stop on CTRL-C as an error
(Closes: #518435)
-- Joost Yervante Damad <email address hidden> Sat, 11 Apr 2009 10:06:45 +0200
Ubuntu changes to be merged:
- replace gksu with menu in Recommends
- Add debian/
visibility: | private → public |
description: | updated |
tags: | added: upgrade |
summary: |
- new upstream version - Wireshark 1.0.7 + Please merge wireshark 1.0.7-1 (universe) from Debian unstable (main) |
Changed in wireshark (Ubuntu): | |
status: | New → Confirmed |
Changed in wireshark (Ubuntu): | |
status: | In Progress → Fix Committed |
Subscribed motu-release based on discussion on irc.
<geser> directhex: 66 files changed, 14757 insertions(+), 1619 deletions(-) -numbers |10933 +++++++ +++++++ +++++++ ++++++-
based on the debdiff of the Debian and Ubuntu packages
there are many small changes and one big: epan/enterprise
<wgrant> I'd suggest going with the update - it is going to have an awful lot of security updates.