Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 585348 - <net-analyzer/wireshark-2.0.4 multiple vulnerabilities
Summary: <net-analyzer/wireshark-2.0.4 multiple vulnerabilities
Status: RESOLVED FIXED
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: Normal normal (vote)
Assignee: Gentoo Security
URL: https://www.wireshark.org/docs/relnot...
Whiteboard: B3 [noglsa]
Keywords:
Depends on: 573942
Blocks: 580882
  Show dependency tree
 
Reported: 2016-06-08 05:40 UTC by Jeroen Roovers (RETIRED)
Modified: 2016-11-11 12:32 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Jeroen Roovers (RETIRED) gentoo-dev 2016-06-08 05:40:31 UTC 
"
The following vulnerabilities have been fixed:

wnpa-sec-2016-29 
   The SPOOLS dissector could go into an infinite loop. Discovered by the CESG.

wnpa-sec-2016-30 
   The IEEE 802.11 dissector could crash. (Bug 11585)

wnpa-sec-2016-31 
   The IEEE 802.11 dissector could crash. Discovered by Mateusz Jurczyk. (Bug 12175)

wnpa-sec-2016-32 
   The UMTS FP dissector could crash. (Bug 12191)

wnpa-sec-2016-33 
   Some USB dissectors could crash. Discovered by Mateusz Jurczyk. (Bug 12356)

wnpa-sec-2016-34 
   The Toshiba file parser could crash. Discovered by iDefense Labs. (Bug 12394)

wnpa-sec-2016-35 
   The CoSine file parser could crash. Discovered by iDefense Labs. (Bug 12395)

wnpa-sec-2016-36 
   The NetScreen file parser could crash. Discovered by iDefense Labs. (Bug 12396)

wnpa-sec-2016-37 
   The Ethernet dissector could crash. (Bug 12440)
"
Comment 1 Jeroen Roovers (RETIRED) gentoo-dev 2016-06-08 07:49:55 UTC 
Arch teams, please test and mark stable:
=net-analyzer/wireshark-2.0.4
Targeted stable KEYWORDS : alpha amd64 hppa ia64 ppc ppc64 sparc x86
Comment 2 Tobias Klausmann (RETIRED) gentoo-dev 2016-06-08 10:24:21 UTC 
Stable on alpha.
Comment 3 Jeroen Roovers (RETIRED) gentoo-dev 2016-06-09 16:27:46 UTC 
Stable for PPC64.
Comment 4 Agostino Sarubbo gentoo-dev 2016-06-10 13:01:39 UTC 
amd64 stable
Comment 5 Agostino Sarubbo gentoo-dev 2016-06-27 08:51:04 UTC 
x86 stable
Comment 6 Jeroen Roovers (RETIRED) gentoo-dev 2016-07-02 09:05:02 UTC 
Stable for HPPA.
Comment 7 Agostino Sarubbo gentoo-dev 2016-07-08 07:59:26 UTC 
ppc stable
Comment 8 Agostino Sarubbo gentoo-dev 2016-07-08 10:07:58 UTC 
sparc stable
Comment 9 Agostino Sarubbo gentoo-dev 2016-07-08 12:07:10 UTC 
ia64 stable.

Maintainer(s), please cleanup.
Comment 10 Aaron Bauman (RETIRED) gentoo-dev 2016-11-11 12:32:41 UTC 
GLSA Vote: No