CVE-2011-3266 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-3266): The proto_tree_add_item function in Wireshark 1.6.1, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to cause a denial of service (infinite loop) via vectors involving a malformed IKE packet and many items in a tree.
1.4.9 is out.
wireshark-1.4.9 is in the tree. Arch teams, please, stabilize.
@Peter (not a block, only reminder): inherit.autotools 2 net-analyzer/wireshark/wireshark-1.4.8.ebuild: no eauto* function called net-analyzer/wireshark/wireshark-1.4.9.ebuild: no eauto* function called And you should drop ".la" files AMD64 OK
x86 stable.
(In reply to comment #4) > x86 stable. Do not forget to remove arches from CC. ;)
amd64: pass
Stable for HPPA.
+ 16 Sep 2011; Tony Vroon <chainsaw@gentoo.org> wireshark-1.4.9.ebuild: + Marked stable on AMD64 based on arch testing by Agostino "ago" Sarubbo & + Elijah "Armageddon" El Lazkani in security bug #381551.
alpha/ia64/sparc stable
ppc/ppc64 stable, last arch done
Thanks, everyone. GLSA Vote: no.
This issue was resolved and addressed in GLSA 201110-02 at http://security.gentoo.org/glsa/glsa-201110-02.xml by GLSA coordinator Alex Legler (a3li).