[v2.5] wireshark: upgrade to 1.8.9. fixes various security vulnerabilities
http://www.wireshark.org/lists/wireshark-announce/201307/msg00001.html
What's New
Bug Fixes
The following vulnerabilities have been fixed.
o wnpa-sec-2013-45
The Bluetooth SDP dissector could go into a large loop.
Discovered by Laurent Butti. (Bug 8831)
Versions affected: 1.10.0, 1.8.0 to 1.8.8.
CVE-2013-4927
o wnpa-sec-2013-47
The DIS dissector could go into a large loop. (Bug 8911)
Versions affected: 1.10.0, 1.8.0 to 1.8.8.
CVE-2013-4929
o wnpa-sec-2013-48
The DVB-CI dissector could crash. Discovered by Laurent Butti.
(Bug 8916)
Versions affected: 1.10.0, 1.8.0 to 1.8.8.
CVE-2013-4930
o wnpa-sec-2013-49
The GSM RR dissector (and possibly others) could go into a
large loop. (Bug 8923)
Versions affected: 1.10.0, 1.8.0 to 1.8.8.
CVE-2013-4931
o wnpa-sec-2013-50
The GSM A Common dissector could crash. (Bug 8940)
Versions affected: 1.10.0, 1.8.0 to 1.8.8.
CVE-2013-4932
o wnpa-sec-2013-51
The Netmon file parser could crash. Discovered by G. Geshev.
(Bug 8742)
Versions affected: 1.10.0, 1.8.0 to 1.8.8.
CVE-2013-4933
CVE-2013-4934
o wnpa-sec-2013-52
The ASN.1 PER dissector could crash. Discovered by
Oliver-Tobias Ripka. (Bug 8722)
Versions affected: 1.10.0, 1.8.0 to 1.8.8.
CVE-2013-4935
(from redmine: issue id 2182, created on 2013-07-29, closed on 2013-07-30)
- Relations:
- parent #2179 (closed)
- Changesets:
- Revision 306bdb8d by Natanael Copa on 2013-07-29T09:02:10Z:
main/wireshark: security upgrade to 1.8.9 (CVE-2013-4927,CVE-2013-4929,CVE-2013-4930,CVE-2013-4931,CVE-2013-4932,CVE-2013-4933,CVE-2013-4934,CVE-2013-4935)
fixes #2182