[v2.6] wireshark: upgrade to 1.8.11/1.10.3 (CVE-2013-6336,CVE-2013-6337,CVE-2013-6338,CVE-2013-6339,CVE-2013-6340)
The following vulnerabilities have been fixed.
wnpa-sec-2013-61
The IEEE 802.15.4 dissector could crash. (Bug 9139)
Versions affected: 1.10.0 to 1.10.2, 1.8.0 to 1.8.10
CVE-2013-6336
wnpa-sec-2013-62
The NBAP dissector could crash. Discovered by Laurent Butti. (Bug 9168)
Versions affected: 1.10.0 to 1.10.2, 1.8.0 to 1.8.10
CVE-2013-6337
wnpa-sec-2013-63
The SIP dissector could crash. (Bug 9228)
Versions affected: 1.10.0 to 1.10.2, 1.8.0 to 1.8.10
CVE-2013-6338
wnpa-sec-2013-64
The OpenWire dissector could go into a large loop. Discovered by Murali. (Bug 9248)
Versions affected: 1.10.0 to 1.10.2, 1.8.0 to 1.8.10
CVE-2013-6339
wnpa-sec-2013-65
The TCP dissector could crash. (Bug 9263)
Versions affected: 1.10.0 to 1.10.2, 1.8.0 to 1.8.10
CVE-2013-6340
http://www.wireshark.org/docs/relnotes/wireshark-1.8.11.html
(from redmine: issue id 2440, created on 2013-11-26, closed on 2013-12-02)
- Relations:
- parent #2439 (closed)
- Changesets:
- Revision ee6eefcb by Natanael Copa on 2013-11-26T15:05:48Z:
main/wireshark: security upgrade to 1.8.11 (CVE-2013-5718,CVE-2013-5719,CVE-2013-5720,CVE-2013-5721,CVE-2013-5722,CVE-2013-4933,CVE-2013-6336,CVE-2013-6337,CVE-2013-6338,CVE-2013-6339,CVE-2013-6340)
fixes #2427
fixes #2440