[Bug 360661] [NEW] Please merge wireshark 1.0.7-1 (universe) from Debian unstable (main)

Launchpad Bug Tracker 360661 at bugs.launchpad.net
Wed Apr 15 14:54:18 BST 2009


*** This bug is a security vulnerability ***

You have been subscribed to a public security bug by Hew McLachlan (hew):

Binary package hint: wireshark

this version fixes a few security issues, including an arbitrary code
execution and denial of service vulnerabilities. please upgrade.
changelog: http://www.wireshark.org/docs/relnotes/wireshark-1.0.7.html.

wireshark (1.0.7-1) unstable; urgency=low

  * New upstream release 1.0.7
    - release notes:
      http://www.wireshark.org/docs/relnotes/wireshark-1.0.7.html
    - security fixes:
      - The PROFINET dissector was vulnerable to a format string
        overflow. (CVE-2009-1210)
      - The LDAP dissector could crash on Windows. (CVE-2009-1267)
      - The Check Point High-Availability Protocol (CPHAP) dissector
        could crash. (CVE-2009-1268)
      - Wireshark could crash while loading a Tektronix .rf5 file
        (CVE-2009-1269)
  * update standards-version to 3.8.1
  * add 21_dumpcap.dpatch with patch from Rob Leslie <rob at mars.org>
    that should avoid dumpcap seeing stop on CTRL-C as an error
    (Closes: #518435)

 -- Joost Yervante Damad <andete at debian.org>  Sat, 11 Apr 2009 10:06:45
+0200

Ubuntu changes to be merged:
    - replace gksu with menu in Recommends
    - Add debian/README.source.

** Affects: wireshark (Ubuntu)
     Importance: Undecided
         Status: Confirmed


** Tags: upgrade
-- 
Please merge wireshark 1.0.7-1 (universe) from Debian unstable (main)
https://bugs.edge.launchpad.net/bugs/360661
You received this bug notification because you are a member of Ubuntu Sponsors for universe, which is a direct subscriber.



More information about the Ubuntu-universe-sponsors mailing list