Our ARM infrastructure is unreachable at the moment, so CI jobs will time-out and packages will not be updated until the servers are back.

wireshark: multiple issues (CVE-2016-5350, CVE-2016-5351, CVE-2016-5352, CVE-2016-5353, CVE-2016-5354, CVE-2016-5355, CVE-2016-5356, CVE-2016-5357, CVE-2016-5358)

CVE-2016-5350: SPOOLS infinite loop

Affected versions: 2.0.0 to 2.0.3, 1.12.0 to 1.12.11

Fixed versions: 2.0.4, 1.12.12

References:

https://www.wireshark.org/security/wnpa-sec-2016-29.html
http://seclists.org/oss-sec/2016/q2/510

CVE-2016-5351: IEEE 802.11 dissector crash

Fixed In Version: 2.0.4, 1.12.12

References:

https://www.wireshark.org/security/wnpa-sec-2016-30.html

CVE-2016-5352: The IEEE 802.11 dissector could crash

Fixed versions: 2.0.4

References:

https://www.wireshark.org/security/wnpa-sec-2016-31.html
http://seclists.org/oss-sec/2016/q2/510

CVE-2016-5353: UMTS FP crash

Fixed In Version: 2.0.4, 1.12.12

References:

https://www.wireshark.org/security/wnpa-sec-2016-32.html
http://seclists.org/oss-sec/2016/q2/510

CVE-2016-5354: USB dissector crash

Affected versions: 2.0.0 to 2.0.3, 1.12.0 to 1.12.11

Fixed versions: 2.0.4, 1.12.12

References:

https://www.wireshark.org/security/wnpa-sec-2016-33.html
http://seclists.org/oss-sec/2016/q2/510

CVE-2016-5355: Toshiba file parser crash

Affected versions: 2.0.0 to 2.0.3, 1.12.0 to 1.12.11

Fixed versions: 2.0.4, 1.12.12

References:

https://www.wireshark.org/security/wnpa-sec-2016-34.html
http://seclists.org/oss-sec/2016/q2/510

CVE-2016-5356: CoSine file parser crash

Affected versions: 2.0.0 to 2.0.3, 1.12.0 to 1.12.11

Fixed versions: 2.0.4, 1.12.12

References:

https://www.wireshark.org/security/wnpa-sec-2016-35.html
http://seclists.org/oss-sec/2016/q2/510

CVE-2016-5357: NetScreen file parser crash

Affected versions: 2.0.0 to 2.0.3, 1.12.0 to 1.12.11

Fixed versions: 2.0.4, 1.12.12

References:

https://www.wireshark.org/security/wnpa-sec-2016-36.html
http://seclists.org/oss-sec/2016/q2/510

CVE-2016-5358: Ethernet dissector crash

Affected versions: 2.0.0 to 2.0.3

Fixed versions: 2.0.4

References:

https://www.wireshark.org/security/wnpa-sec-2016-37.html
http://seclists.org/oss-sec/2016/q2/510

(from redmine: issue id 5851, created on 2016-07-04, closed on 2016-07-07)

Relations:
- child #5852 (closed)
- child #5853 (closed)
- child #5854 (closed)

To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information