183520 2007-06-28 13:21 0000 net-analyzer/wireshark < 0.99.6 multiple vulnerabilities (CVE-2007-3389, 3390, 3391, 3392, 3393) 2007-08-16 22:06:11 0000 1 1 1 Unclassified Gentoo Linux Security unspecified All Linux RESOLVED FIXED http://www.wireshark.org/docs/relnotes/wireshark-0.99.6.html B? [glsa] P2 normal --- 1 chainsaw@gentoo.org security@gentoo.org bernd@linx.net carlo@gentoo.org netmon@gentoo.org ssuominen@gentoo.org chainsaw@gentoo.org 2007-06-28 13:21:13 0000 # Wireshark could crash when dissecting an HTTP chunked response. (Bug 1394) Versions affected: 0.99.5 # On some systems, Wireshark could crash while reading iSeries capture files. (Bug 1415) Versions affected: 0.10.14 to 0.99.5 # Wireshark could exhaust system memory while reading a malformed DCP ETSI packet. (Bug 1264) Versions affected: 0.99.5 # Wireshark could loop excessively while reading a malformed SSL packet. (Bug 1582) Versions affected: ? # The DHCP/BOOTP dissector was susceptible to an off-by-one error. (Bug 1416) Versions affected: ? # Wireshark could loop excessively while reading a malformed MMS packet. (Bug 1382) Versions affected: ? carlo@gentoo.org 2007-06-28 13:36:32 0000 *** Bug 183521 has been marked as a duplicate of this bug. *** carlo@gentoo.org 2007-06-28 14:45:03 0000 no reason to restrict this bug jaervosz@gentoo.org 2007-06-29 21:11:36 0000 netmon please advise and patch as necessary. jokey@gentoo.org 2007-07-06 16:11:39 0000 Bumped in CVS though I'd be happy for another pair of eyes first if all security issues are really fixed... jaervosz@gentoo.org 2007-07-15 07:46:36 0000 Seems like mostly minor issues. Anyways. Arches please test and mark stable. Target keywords are: wireshark-0.99.6.ebuild:KEYWORDS="alpha amd64 hppa ia64 ppc ppc64 sparc x86 ~x86-fbsd" armin76@gentoo.org 2007-07-15 16:48:58 0000 pva has the patch for the --as-needed failure...so we could wait until he adds it... jaervosz@gentoo.org 2007-07-15 18:08:06 0000 Back to ebuild awaiting patch. ssuominen@gentoo.org 2007-07-15 20:27:38 0000 (In reply to comment #7) > Back to ebuild awaiting patch. > I've just fixed the issue with asneeded so it should be ok to proceed. gustavoz@gentoo.org 2007-07-16 15:34:12 0000 sparc stable. armin76@gentoo.org 2007-07-16 16:45:19 0000 alpha/ia64/x86 stable cryos@gentoo.org 2007-07-16 18:57:01 0000 Stable on amd64. corsair@gentoo.org 2007-07-16 18:59:05 0000 ppc64 stable jer@gentoo.org 2007-07-16 22:38:31 0000 Stable for HPPA. dertobi123@gentoo.org 2007-07-20 18:31:40 0000 ppc stable - time for glsa voting py@gentoo.org 2007-07-20 20:57:29 0000 although it's mainly minor issues like Jaervosz pointed out, there's still the off-by-one error, which means possible remote code execution, so I vote YES. jaervosz@gentoo.org 2007-07-22 07:33:26 0000 I tend to vote YES. aetius@gentoo.org 2007-07-24 10:55:44 0000 Two yes votes = glsa request. CVE-2007-3389 CVE-2007-3390 CVE-2007-3391 CVE-2007-3392 CVE-2007-3393 falco@gentoo.org 2007-08-16 22:06:11 0000 GLSA 200708-12!