Репозитории ALT
S: | 4.0.8-alt1 |
5.1: | 1.2.9-alt0.M51.1 |
4.1: | 1.2.6-alt0.M41.1 |
4.0: | 1.2.9-alt0.M40.1 |
Группа :: Мониторинг
Пакет: wireshark
Главная Изменения Спек Патчи Sources Загрузить Gear Bugs and FR Repocop
14 сентября 2023 Anton Farygin <rider at altlinux.ru> 4.0.8-alt1
- 4.0.8
- 4.0.7
- Fixes:
* wnpa-sec-2023-22. iSCSI dissector crash.
* wnpa-sec-2023-21. Kafka dissector crash.
- 4.0.6
- Fixes:
* wnpa-sec-2023-12 Candump log file parser crash. CVE-2023-2855.
* wnpa-sec-2023-13 BLF file parser crash. CVE-2023-2857.
* wnpa-sec-2023-14 GDSDB dissector infinite loop.
* wnpa-sec-2023-15 NetScaler file parser crash. CVE-2023-2858.
* wnpa-sec-2023-16 VMS TCPIPtrace file parser crash. CVE-2023-2856.
* wnpa-sec-2023-17 BLF file parser crash. CVE-2023-2854.
* wnpa-sec-2023-18 RTPS dissector crash. CVE-2023-0666.
* wnpa-sec-2023-19 IEEE C37.118 Synchrophasor dissector crash. CVE-2023-0668.
- 4.0.5
- Fixes:
* CVE-2023-1994 GQUIC dissector crash.
* CVE-2023-1993 LISP dissector large loop.
* CVE-2023-1992 RPCoRDMA dissector crash.
* CVE-2023-1161 ISO 15765 and ISO 10681 dissector crash.
- 4.0.2 -> 4.0.3
- Fixes:
* wnpa-sec-2023-07. TIPC dissector crash.
* wnpa-sec-2023-06. Multiple dissector excessive loops.
* wnpa-sec-2023-05. iSCSI dissector crash.
* wnpa-sec-2023-04. GNW dissector crash.
* wnpa-sec-2023-03. Dissection engine crash.
* wnpa-sec-2023-02. NFS dissector memory leak.
* wnpa-sec-2023-01. EAP dissector crash.
- 4.0.1 > 4.0.2
- Fixes:
* wnpa-sec-2022-09 Multiple dissector infinite loops.
* wnpa-sec-2022-10 Kafka dissector memory exhaustion.
- 3.6.8 -> 4.0.1
- 3.6.5 -> 3.6.8 (Fixes: CVE-2022-3190)
- 3.6.3 -> 3.6.5
- 3.6.3
- 3.6.2 (Fixes: CVE-2022-0586, CVE-2022-0585, CVE-2022-0583, CVE-2022-0582, CVE-2022-0581)
- 3.6.1 (Fixes: CVE-2021-4185, CVE-2021-4184, CVE-2021-4183, CVE-2021-4182, CVE-2021-4181)
- 3.4.10 (Fixes: CVE-2021-39929, CVE-2021-39926, CVE-2021-39925,
CVE-2021-39924, CVE-2021-39922, CVE-2021-39928,
CVE-2021-39921, CVE-2021-39920)
- 3.4.9
- 3.4.8
- 3.4.7 (Fixes: CVE-2021-22235)
- 3.4.6 (Fixes: CVE-2021-22222)
- 3.4.5 (Fixes: CVE-2021-22207)
- 3.4.4 (Fixes: CVE-2021-22191)
- 3.4.3 (Fixes: CVE-2021-22173, CVE-2021-22174)
- 3.4.2
- 3.2.8
- fixes:
* CVE-2020-28030 the GQUIC dissector could crash.
* CVE-2020-26575 the Facebook Zero Protocol (aka FBZERO) dissector
could enter an infinite loop.
- 3.2.7
- fixes:
* BLIP dissector crash. CVE-2020-25866
* TCP dissector crash. CVE-2020-25862
* MIME Multipart dissector crash. CVE-2020-25863
- 3.2.6
- 3.2.5
- fixes:
* GVCP dissector infinite loop. CVE-2020-15466
- 3.2.4
- fixes:
* the NFS dissector could crash. CVE-2020-13164
- 3.2.3
- fixes:
* the BACapp dissector could crash. CVE-2020-11647
- 3.2.2
- 3.0.9
- fixes:
* LTE RRC dissector could leak memory. CVE-2020-9431
* WiMax DLMAP dissector could crash. CVE-2020-9430
- 3.0.8
- disabled sharkd build
- fixes:
* BT ATT dissector crash. CVE-2020-7045
- 3.0.7
- fixes:
* CMS dissector crash. CVE-2019-19553
- changed BuildRequires from liblua5.1-devel to liblua5.1-compat-devel
- 3.0.6
- 3.0.5
- 3.0.4
- fixes:
* Gryphon dissector infinite loop. CVE-2019-16319
- 3.0.3
- fixes:
* ASN.1 BER and related dissectors crash. CVE-2019-13619
- 3.0.2
- fixes:
* Wireshark dissection engine crash. CVE-2019-12295
- 3.0.1
- fixes:
* NetScaler file parser crash. CVE-2019-10895
* SRVLOC dissector crash. CVE-2019-10899
* IEEE 802.11 dissector infinite loop. CVE-2019-10897
* GSUP dissector infinite loop. CVE-2019-10898
* Rbm dissector infinite loop. CVE-2019-10900
* GSS-API dissector crash. CVE-2019-10894
* DOF dissector crash. CVE-2019-10896
* TSDNS dissector crash. CVE-2019-10902
* LDSS dissector crash. CVE-2019-10901
* DCERPC SPOOLSS dissector crash. CVE-2019-10903
- 3.0.0
- removed package with documentation
- 2.6.7
- fixes:
* ASN.1 BER and related dissectors crash. CVE-2019-9209
* TCAP dissector crash. CVE-2019-9208
- libwiretap included to wireshark-base package
- libwiretap-devel included to wireshark-devel package
- 2.6.6
- fixes:
* The 6LoWPAN dissector could crash. CVE-2019-5716
* The P_MUL dissector could crash. CVE-2019-5717
* The RTSE dissector and other dissectors could crash. CVE-2019-5718
* The ISAKMP dissector could crash. CVE-2019-5719
- 2.6.5
- added devel package (closes: #29869)
- fixes:
* The Wireshark dissection engine could crash. CVE-2018-19625
* The DCOM dissector could crash. CVE-2018-19626
* The LBMPDM dissector could crash. CVE-2018-19623
* The MMSE dissector could go into an infinite loop. CVE-2018-19622
* The IxVeriWave file parser could crash. CVE-2018-19627
* The PVFS dissector could crash. CVE-2018-19624
* The ZigBee ZCL dissector could crash. CVE-2018-19628
- introduce nghttp2 knob (on by default)
- E2K: link against -lcxa explicitly with lcc below 1.23
- 2.6.4 (fixes: CVE-2018-18227, CVE-2018-18225, CVE-2018-18225, CVE-2018-12086)
- disabled build gtk+ UI
- 2.6.3 (fixes: CVE-2018-16056, CVE-2018-16057, CVE-2018-16058)
- 2.6.2 (fixes: CVE-2018-14370, CVE-2018-14367, CVE-2018-14369, CVE-2018-14368, CVE-2018-14341, CVE-2018-14339, CVE-2018-14343, CVE-2018-14340, CVE-2018-14344, CVE-2018-14342)
- Fix FTBFS (Add missing rpm-build-xdg).
- 2.6.1 (fixes: CVE-2018-11359, CVE-2018-11361, CVE-2018-11358, CVE-2018-11360, CVE-2018-11356, CVE-2018-11357, CVE-2018-11355, CVE-2018-11354, CVE-2018-11362)
- patch for wireshark #14638 l16mono.so issue is applied
- 2.6.0
- 2.5.1
- 2.4.5
- fixes:
* wnpa-sec-2018-05 The IEEE 802.11 dissector could crash. CVE-2018-7335
* wnpa-sec-2018-06 Multiple dissectors could go into large infinite loops. All ASN.1
BER dissectors, along with the DICOM, DMP, LLTD, OpenFlow, RELOAD, RPCoRDMA, RPKI-Router,
S7COMM, SCCP, Thread, Thrift, USB and WCCP dissectors were susceptible. CVE-2018-7321, CVE-2018-7322,
CVE-2018-7323, CVE-2018-7324, CVE-2018-7325, CVE-2018-7326, CVE-2018-7327, CVE-2018-7328, CVE-2018-7329,
CVE-2018-7330, CVE-2018-7331, CVE-2018-7332, CVE-2018-7333
* wnpa-sec-2018-07 The UMTS MAC dissector could crash. CVE-2018-7334
* wnpa-sec-2018-08 The DOCSIS dissector could crash. CVE-2018-7337
* wnpa-sec-2018-09 The FCP dissector could crash. CVE-2018-7336
* wnpa-sec-2018-10 The SIGCOMP dissector could crash. CVE-2018-7320
* wnpa-sec-2018-11 The pcapng file parser could crash. CVE-2018-7420
* wnpa-sec-2018-12 The IPMI dissector could crash. CVE-2018-7417
* wnpa-sec-2018-13 The SIGCOMP dissector could crash. CVE-2018-7418
* wnpa-sec-2018-14 The NBAP disssector could crash. CVE-2018-7419
- 2.4.4
- fixes:
* wnpa-sec-2018-01 Multiple dissectors could crash. CVE-2018-5336
* wnpa-sec-2018-03 The IxVeriWave file parser could crash. CVE-2018-5334
* wnpa-sec-2018-04 The WCP dissector could crash. CVE-2018-5335
- 2.4.3
- fixes:
* wnpa-sec-2017-49 CIP Safety dissector crash CVE-2017-17085
* wnpa-sec-2017-48 NetBIOS dissector crash CVE-2017-17083
* wnpa-sec-2017-47 IWARP_MPA dissector crash CVE-2017-17084
- 2.4.2
- fixes:
* wnpa-sec-2017-42 BT ATT dissector crash CVE-2017-15192
* wnpa-sec-2017-43 MBIM dissector crash CVE-2017-15193
* wnpa-sec-2017-44 DMP dissector crash CVE-2017-15191
* wnpa-sec-2017-45 RTSP dissector crash CVE-2017-15190
* wnpa-sec-2017-46 DOCSIS infinite loop CVE-2017-15189
- 2.4.1 with following fixes:
* wnpa-sec-2017-38 MSDP dissector infinite loop CVE-2017-13767
* wnpa-sec-2017-39 Profinet I/O buffer overrun CVE-2017-13766
* wnpa-sec-2017-40 Modbus dissector crash CVE-2017-13764
* wnpa-sec-2017-41 IrCOMM dissector buffer overrun CVE-2017-13765
- 2.4.0
- new version:
* wnpa-sec-2017-13 WBMXL dissector infinite loop CVE-2017-7702, CVE-2017-11410
* wnpa-sec-2017-28 openSAFETY dissector memory exhaustion CVE-2017-9350, CVE-2017-11411
* wnpa-sec-2017-34 AMQP dissector crash CVE-2017-11408
* wnpa-sec-2017-35 MQ dissector crash CVE-2017-11407
* wnpa-sec-2017-36 DOCSIS infinite loop CVE-2017-11406
- new version with these security fixes:
* wnpa-sec-2017-22 Bazaar dissector infinite loop CVE-2017-9352
* wnpa-sec-2017-23 DOF dissector read overflow CVE-2017-9348
* wnpa-sec-2017-24 DHCP dissector read overflow CVE-2017-9351
* wnpa-sec-2017-25 SoulSeek dissector infinite loop CVE-2017-9346
* wnpa-sec-2017-26 DNS dissector infinite loop CVE-2017-9345
* wnpa-sec-2017-27 DICOM dissector infinite loop CVE-2017-9349
* wnpa-sec-2017-28 openSAFETY dissector memory exhaustion CVE-2017-9350
* wnpa-sec-2017-29 BT L2CAP dissector divide by zero CVE-2017-9344
* wnpa-sec-2017-30 MSNIP dissector crash CVE-2017-9343
* wnpa-sec-2017-31 ROS dissector crash CVE-2017-9347
* wnpa-sec-2017-32 RGMP dissector crash CVE-2017-9354
* wnpa-sec-2017-30 MSNIP dissector crash CVE-2017-9343
* wnpa-sec-2017-31 ROS dissector crash CVE-2017-9347
* wnpa-sec-2017-32 RGMP dissector crash CVE-2017-9354
* wnpa-sec-2017-33 IPv6 dissector crash CVE-2017-9353
- new version with these security fixes:
* wnpa-sec-2017-12 IMAP dissector crash CVE-2017-7703
* wnpa-sec-2017-13 WBMXL dissector infinite loop CVE-2017-7702
* wnpa-sec-2017-14 NetScaler file parser infinite loop CVE-2017-7700
* wnpa-sec-2017-15 RPCoRDMA dissector infinite loop CVE-2017-7705
* wnpa-sec-2017-16 BGP dissector infinite loop CVE-2017-7701
* wnpa-sec-2017-17 DOF dissector infinite loop CVE-2017-7704
- fixed liblua devel requires
- new version
- NMU: new lua 5.1 BR:
- new version
- new version
- new version, in which following vulnerabilities have been fixed:
* CVE-2016-9372 Profinet I/O long loop.
* CVE-2016-9373 DCERPC crash.
* CVE-2016-9374 AllJoyn crash.
* CVE-2016-9375 DTN infinite loop.
* CVE-2016-9376 OpenFlow crash.
- new version
- new version
- new version
- new version
- 2.0.3
- 2.0.2
- doc subpackage made noarch (thanks, repocop)
- add alternatives support for gtk+/qt5
- spec cleanup
- Revive gtk+ subpackage
- 2.0.1
- wireshark-gtk+ obsoleted by wireshark-qt5
- new version 1.12.8
- new version
- new version 1.12.5
- new version 1.12.4
- new version 1.12.3
- new version 1.12.2
- new version 1.12.1
- new version
- new version 1.10.8
- new version
- new version
- new version
- new version
- new version
- new version
- new version
- new version
- new version
- new version
- add zlib-devel requires
- new version
- new version
- new version, fixed CVE-2010-3445 (closes: #24297)
- user guide updated
- new version
- new version
- new version
- new version, multiple vulnerabilities fixed by upstream (closes #20836)
- Add LUA support for internal scripting
-- Disabled by default, edit /usr/share/wireshark/init.lua to enable - Include libwsutil.so.* into build
- [1.2.0]
- [1.0.8]
+ PCNFSD dissector crashes fixed, no proper CVE number yet
- [1.0.7]
+ CVE-2009-1210
+ CVE-2009-1267
+ CVE-2009-1268
+ CVE-2009-1269
- [1.0.4]
+ CVE-2008-4685
+ CVE-2008-4684
+ CVE-2008-4683
+ CVE-2008-4682
+ CVE-2008-4681
+ CVE-2008-4680
- [1.0.3]
+ The NCP dissector was susceptible to a number of problems,
including buffer overflows and an infinite loop.
+ Wireshark could crash while uncompressing zlib-compressed
packet data.
+ Wireshark could crash while reading a Tektronix .rf5 file.
- [1.0.2]
+ Some crashes fixed before they were submitted to CVE list
- [1.0.1]
+ CVE-2008-1563
+ CVE-2008-1562
+ CVE-2008-1561
- [1.0.0] (YAY!)
+ Some crashes fixed before they were submitted to CVE list - User Guide updated
- [0.99.8]
+ CVE-2008-1072
+ CVE-2008-1071
+ CVE-2008-1070 - User Guide updated
- New tool rawshark(1)
- Traffic capture now control(8)led by wireshark-capture facility
- [0.99.7]
+ CVE-2007-6451
+ CVE-2007-6450
+ CVE-2007-6441
+ CVE-2007-6439
+ CVE-2007-6438
+ CVE-2007-6121
+ CVE-2007-6120
+ CVE-2007-6119
+ CVE-2007-6118
+ CVE-2007-6117
+ CVE-2007-6116
+ CVE-2007-6115
+ CVE-2007-6114
+ CVE-2007-6113
+ CVE-2007-6112
+ CVE-2007-6111 - Enabled kerberos, gcrypt and gnutls support
- Enabled RTP player for VoIP captures
- Use url_handler for default webbrowser (closes: #11692)
- [0.99.6]
+ CVE-2007-3389
+ CVE-2007-3390
+ CVE-2007-3391
+ CVE-2007-3392
+ CVE-2007-3393
- [0.99.5]
+ CVE-2007-0459
+ CVE-2007-0458
+ CVE-2007-0457
+ CVE-2007-0456 - User Guide updated
- [0.99.4]
- [0.99.2]
+ CVE-2006-3627
+ CVE-2006-3628
+ CVE-2006-3628
+ CVE-2006-3628
+ CVE-2006-3628
+ CVE-2006-3629
+ CVE-2006-3630
+ CVE-2006-3628
+ CVE-2006-3631
+ CVE-2006-3632 - Renaamed from ethereal to wireshark, added Obsoletes
- Rediffed all patches
- Updated buildrequires
- [0.99.0]
- User Guide updated
- libethereal should be linked with libadns and libm
- %_iconsdir -> %_niconsdir
- [0.10.14]
- [0.10.13]
- Fix unexpanded macros
- Changed -doc group to Documentation
- [0.10.12]
- Updated EUG
- Added patches from debian:
+ diameter_vendors
+ drop-capabilities
+ giop-buffer
- [0.10.11]
- [0.10.10]
- Fixed:
+ CAN-2005-0699
+ CAN-2005-0704
+ CAN-2005-0705 - ethereal-devel and idl2eth are unusable. Dropped
- libwiretap is back
- [0.10.9]
- Fixed:
+ CAN-2004-1139
+ CAN-2004-1140
+ CAN-2004-1141
+ CAN-2004-1142
+ CAN-2005-0006
+ CAN-2005-0007
+ CAN-2005-0008
+ CAN-2005-0009
+ CAN-2005-0010
+ CAN-2005-0084 - Debian fixes:
* Fixed dissect_cmip_InvokeIDType declaration (FTBFS with gcc-4.0)
* epan/dissectors/packet-giop.c: fixed segfault with some GIOP packets
* ethereal_gen.py: fixed some includes - ALT fixes (based on Debian):
* epan/prefs.c: changed default font to "Fixed 11"
* epan/prefs.c: Use url_handler.sh as default browser - Removed -kde subpackage (obsoleted by -gtk+) (closes: #5859)
- Removed -consolehelper subpackage. Running ethereal with root privileges
is insecure, do it at your own risc (closes: #3520) - Added menu entry and icons (closes: #5006)
- SNMP support disabled due to overbloated dependencies
- Separated -libs and -devel. Header files list borrowed from Debian
- libwiretap-devel is now obsoleted by ethereal-devel
- Packaged idl2eth utility (idl2eth package)
- [0.10.6]
- Moved libwiretap to seperate subpackage
- Added libwiretap-devel
- Added EUG (in -doc subpackage)
- 1.10.5
- 0.10.4
- Fixed:
+ Some libraries were missing
- 0.10.3
- Removed:
+ wireshark-gnome subpackage (outdated and non-usable anymore)
- 0.10.2
- Removed:
+ Stock icons (added into the release tarball finally)
+ Makefile patch - Added:
+ mergecap, idl2eth, text2pcap and their man-pages
+ man page for ethereal-filter
- 0.10.1
- Fixed:
+ Wrong dependencies between makefiles - Added:
+ Missing stock GTK+ 2.2.4 icons used by Ethereal
- 0.9.16
- Fixed:
+ CAN-2003-0925
+ CAN-2003-0926
+ CAN-2003-0927 - Added:
+ --enable Master switch allows to build this package for
ALT Linux Master 2.2
+ Build GTK+ 2.x frontend instead of GTK+ 1.x - Updated:
+ PAM entry to follow current PAM policy in ALT Linux Sisyphus
- Updated to 0.9.13, fixes a number of vulnerabilities.
- Added plugins path to findprov lib path
- Updated to 0.9.11:
"This release fixes the packaging, and adds minor updates
and fixes for the following protocols:
AFS, OpenBSD enc(4), RTP, SCSI, SIP, SMPP, SSH
IA64 support has been improved."
- 0.9.10
- 0.9.8
- New version
- Fixed:
+ Usermode bindings fixed
+ wireshark-usermode name is changed to wireshark-consolehelper
- Security update [CAN-2002-0834]
- Group changed to Monitoring
- Security update
- First build for ALT Linux
- 0.9.0
- built on Redhat 6.2 + updates
- Too many updates to report here, take a look in NEWS
- 0.8.20
- 0.8.19
- RPM built on Redhat 6.2, updates, rpm 3.0.5 and ucd-snmpd 4.2
against libpcap 0.6.2 (tcpdump 3.6.2) and openssl 0.9.6
- 0.8.18
- Many improvement, take a look at NEWS in %doc
- Reduced the changelog history in .spec
- new binary package rearrangement, separated stuff that needs X11
- I changed, and I'm proposing group to Applications/Network for now ... as
the /usr/share/doc/rpm-*/GROUPS 'official' list does not have appropriate
group for networking applications and leads them to be scattered around.
The tcpdump is now at System/Internet and nmap from Applications/System,
the X11/* group is now on current distros mostly dead ... the X11/* tree
seems to still live on contrib packages. Well if it's necessary to show X11
in group-name, I would rather suggest then Applications/Network{,ing}/X11
would make more sense and keep all applications closer together and all
it's bits and bobs easier locatable on multiple packages are built from
one source package.
- rebuilt under Redhat 6.2 + updates
- reverted from rpm 4.0.2 to 3.0.5 for better compatibility with Redhat 6.x
- thanks Riku for the great refactory of the spec
- rebuilt for RedHat 7.1
- created support for usermode
- added icons & config files for gnome and kde desktop integration
- added %dir %_libdir/ethereal/plugins to get clean uninstall
- further spec file minor cleaning, converted absolute paths to
macros for better relocatability
- 0.8.17 (grabbed corrected 0.8.17a archive)
- RPM built on Redhat 6.2, updates, rpm 4.0
- 0.8.16
- RPM built on Redhat 6.1, updates, rpm 3.0.5 and libpcap-0.4-19
- ucd-snmp used 0.4.2-5 (added -lcrypto)