Summary: | <net-analyzer/wireshark-3.4.7: DNP dissector crash (CVE-2021-22235) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Sam James <sam> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | bman, sam, zlogene |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | B3 [glsa+] | ||
Package list: |
net-analyzer/wireshark-3.4.7-r1
|
Runtime testing required: | --- |
Description
Sam James
2021-07-15 03:34:15 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=af43333f245fdcd664de8c138550d217e8fbc0fb commit af43333f245fdcd664de8c138550d217e8fbc0fb Author: Sam James <sam@gentoo.org> AuthorDate: 2021-07-15 03:44:10 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2021-07-15 03:44:23 +0000 net-analyzer/wireshark: add 3.4.7 Bug: https://bugs.gentoo.org/802216 Signed-off-by: Sam James <sam@gentoo.org> net-analyzer/wireshark/Manifest | 1 + net-analyzer/wireshark/wireshark-3.4.7.ebuild | 278 ++++++++++++++++++++++++++ 2 files changed, 279 insertions(+) arm64 done amd64 stable x86 done ppc64 done arm done all arches done The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f6345dd7eedd32252fa376637883300a2658c210 commit f6345dd7eedd32252fa376637883300a2658c210 Author: Sam James <sam@gentoo.org> AuthorDate: 2021-08-06 02:58:13 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2021-08-06 03:41:19 +0000 net-analyzer/wireshark: drop 3.4.6 Bug: https://bugs.gentoo.org/802216 Signed-off-by: Sam James <sam@gentoo.org> net-analyzer/wireshark/Manifest | 1 - net-analyzer/wireshark/wireshark-3.4.6.ebuild | 278 -------------------------- 2 files changed, 279 deletions(-) Unable to check for sanity:
> no match for package: net-analyzer/wireshark-3.4.7
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=6ee48442f400b3d264873062440793b81e7b7f04 commit 6ee48442f400b3d264873062440793b81e7b7f04 Author: Sam James <sam@gentoo.org> AuthorDate: 2021-12-07 07:14:58 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2021-12-07 07:14:58 +0000 net-analyzer/wireshark: drop 3.4.7-r1, 3.4.8 Bug: https://bugs.gentoo.org/802216 Signed-off-by: Sam James <sam@gentoo.org> net-analyzer/wireshark/Manifest | 2 - net-analyzer/wireshark/wireshark-3.4.7-r1.ebuild | 278 ---------------------- net-analyzer/wireshark/wireshark-3.4.8.ebuild | 280 ----------------------- 3 files changed, 560 deletions(-) Unable to check for sanity:
> no match for package: net-analyzer/wireshark-3.4.7-r1
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=97d0d735c5cd87bd92649af92ac9813441500ad6 commit 97d0d735c5cd87bd92649af92ac9813441500ad6 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-10-08 20:46:55 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-10-08 20:46:55 +0000 net-analyzer/wireshark: drop 3.4.11 Bug: https://bugs.gentoo.org/869140 Bug: https://bugs.gentoo.org/833294 Bug: https://bugs.gentoo.org/802216 Bug: https://bugs.gentoo.org/830343 Bug: https://bugs.gentoo.org/824474 Signed-off-by: Sam James <sam@gentoo.org> net-analyzer/wireshark/Manifest | 1 - net-analyzer/wireshark/wireshark-3.4.11.ebuild | 285 ------------------------- 2 files changed, 286 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=5afc42fac6b85a1784ed825e9428c75b6e2e32b0 commit 5afc42fac6b85a1784ed825e9428c75b6e2e32b0 Author: Sam James <sam@gentoo.org> AuthorDate: 2022-10-08 20:46:37 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-10-08 20:46:37 +0000 profiles/base: mask libvirt[wireshark-plugins] for older libvirt Bug: https://bugs.gentoo.org/869140 Bug: https://bugs.gentoo.org/833294 Bug: https://bugs.gentoo.org/802216 Bug: https://bugs.gentoo.org/830343 Bug: https://bugs.gentoo.org/824474 Signed-off-by: Sam James <sam@gentoo.org> profiles/base/package.use.mask | 4 ++++ 1 file changed, 4 insertions(+) GLSA request filed The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=e0b5bad8c2504362c0e8f33550615df1018533a8 commit e0b5bad8c2504362c0e8f33550615df1018533a8 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2022-10-16 14:40:26 +0000 Commit: John Helmert III <ajak@gentoo.org> CommitDate: 2022-10-16 14:45:23 +0000 [ GLSA 202210-04 ] Wireshark: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/802216 Bug: https://bugs.gentoo.org/824474 Bug: https://bugs.gentoo.org/830343 Bug: https://bugs.gentoo.org/833294 Bug: https://bugs.gentoo.org/869140 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: John Helmert III <ajak@gentoo.org> glsa-202210-04.xml | 68 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 68 insertions(+) GLSA released, all done! |