[ubuntu/natty] wireshark 1.4.4-1 (Accepted)

Ubuntu Installer archive at ubuntu.com
Mon Mar 7 15:21:33 UTC 2011 

wireshark (1.4.4-1) unstable; urgency=high

  * New upstream release 1.4.4
    - release notes:
      http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html
    - security fixes
      - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered
        that a large packet length in a pcap-ng file could crash Wireshark.
        (No assigned CVE number.)
      - Wireshark could overflow a buffer while reading a Nokia DCT3 trace
        file. (CVE-2011-0713)
      - Paul Makowski working for SEI/CERT discovered that Wireshark on 32
        bit systems could crash while reading a malformed 6LoWPAN packet.
        (No assigned CVE number.)
      - joernchen of Phenoelit discovered that the LDAP and SMB dissectors
        could overflow the stack.
        (No assigned CVE number.)
      - Xiaopeng Zhang of Fortinet's Fortiguard Labs discovered that large
        LDAP Filter strings can consume excessive amounts of memory.
        (No assigned CVE number.)
   * drop 06_fix_crash_on_pcapng_file_error.patch since it is included in
     the new release

Date: Mon,  07 Mar 2011 14:44:05 +0000
Changed-By: Micah Gersten <launchpad at micahscomputing.com>
Maintainer: Balint Reczey <balint at balintreczey.hu>
Origin: Debian/unstable
https://launchpad.net/ubuntu/natty/+source/wireshark/1.4.4-1
-------------- next part --------------
Origin: Debian/unstable
Format: 1.7
Date: Mon,  07 Mar 2011 14:44:05 +0000
Source: wireshark
Binary: wireshark-common, wireshark, tshark, wireshark-dev, wireshark-dbg, wireshark-doc, libwireshark0, libwsutil0, libwsutil-dev, libwireshark-data, libwireshark-dev, libwiretap0, libwiretap-dev
Architecture: source
Version: 1.4.4-1
Distribution: natty
Urgency: high
Maintainer: Balint Reczey <balint at balintreczey.hu>
Changed-By: Micah Gersten <launchpad at micahscomputing.com>
Description:
 wireshark  - network traffic analyzer - GTK+ version
Files:
 11ce019d85d9822597b163ce5b4da858 20479081 net optional wireshark_1.4.4.orig.tar.bz2
 a70435a3e03641c7861c72212295860c 1834 net optional wireshark_1.4.4-1.dsc
 986ceb3e54a7641ca212594003589c16 56233 net optional wireshark_1.4.4-1.debian.tar.gz
Changes:
 wireshark (1.4.4-1) unstable; urgency=high
 .
   * New upstream release 1.4.4
     - release notes:
       http://www.wireshark.org/docs/relnotes/wireshark-1.4.4.html
     - security fixes
       - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered
         that a large packet length in a pcap-ng file could crash Wireshark.
         (No assigned CVE number.)
       - Wireshark could overflow a buffer while reading a Nokia DCT3 trace
         file. (CVE-2011-0713)
       - Paul Makowski working for SEI/CERT discovered that Wireshark on 32
         bit systems could crash while reading a malformed 6LoWPAN packet.
         (No assigned CVE number.)
       - joernchen of Phenoelit discovered that the LDAP and SMB dissectors
         could overflow the stack.
         (No assigned CVE number.)
       - Xiaopeng Zhang of Fortinet's Fortiguard Labs discovered that large
         LDAP Filter strings can consume excessive amounts of memory.
         (No assigned CVE number.)
    * drop 06_fix_crash_on_pcapng_file_error.patch since it is included in
      the new release

More information about the Natty-changes mailing list