* [Buildroot] [PATCH] wireshark: security bump to version 1.12.3
@ 2015-01-08 17:29 Gustavo Zacarias
2015-01-08 18:20 ` Thomas Petazzoni
0 siblings, 1 reply; 2+ messages in thread
From: Gustavo Zacarias @ 2015-01-08 17:29 UTC (permalink / raw)
To: buildroot
Fixes:
CVE-2015-0559, CVE-2015-0560 - The WCCP dissector could crash.
CVE-2015-0561 - The LPP dissector could crash.
CVE-2015-0562 - The DEC DNA Routing Protocol dissector could crash.
CVE-2015-0563 - The SMTP dissector could crash.
CVE-2015-0564 - Wireshark could crash while decypting TLS/SSL sessions.
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
---
package/wireshark/wireshark.hash | 6 +++---
package/wireshark/wireshark.mk | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/package/wireshark/wireshark.hash b/package/wireshark/wireshark.hash
index 9b0c488..f6c5434 100644
--- a/package/wireshark/wireshark.hash
+++ b/package/wireshark/wireshark.hash
@@ -1,3 +1,3 @@
-# From https://www.wireshark.org/download/SIGNATURES-1.12.2.txt
-md5 2f2a16be8b087227cb17733c72288ae4 wireshark-1.12.2.tar.bz2
-sha1 0598fe285725f97045d7d08e6bde04686044b335 wireshark-1.12.2.tar.bz2
+# From https://www.wireshark.org/download/SIGNATURES-1.12.3.txt
+md5 e6318b8451d4e56d39bd911da296ef19 wireshark-1.12.3.tar.bz2
+sha1 44ad77b6e80f41ba34ac0eaf477b81cb1345ceed wireshark-1.12.3.tar.bz2
diff --git a/package/wireshark/wireshark.mk b/package/wireshark/wireshark.mk
index ae69006..d13d80c 100644
--- a/package/wireshark/wireshark.mk
+++ b/package/wireshark/wireshark.mk
@@ -4,7 +4,7 @@
#
################################################################################
-WIRESHARK_VERSION = 1.12.2
+WIRESHARK_VERSION = 1.12.3
WIRESHARK_SOURCE = wireshark-$(WIRESHARK_VERSION).tar.bz2
WIRESHARK_SITE = http://www.wireshark.org/download/src/all-versions
WIRESHARK_LICENSE = wireshark license
--
2.0.5
^ permalink raw reply related [flat|nested] 2+ messages in thread
* [Buildroot] [PATCH] wireshark: security bump to version 1.12.3
2015-01-08 17:29 [Buildroot] [PATCH] wireshark: security bump to version 1.12.3 Gustavo Zacarias
@ 2015-01-08 18:20 ` Thomas Petazzoni
0 siblings, 0 replies; 2+ messages in thread
From: Thomas Petazzoni @ 2015-01-08 18:20 UTC (permalink / raw)
To: buildroot
Dear Gustavo Zacarias,
On Thu, 8 Jan 2015 14:29:35 -0300, Gustavo Zacarias wrote:
> Fixes:
> CVE-2015-0559, CVE-2015-0560 - The WCCP dissector could crash.
> CVE-2015-0561 - The LPP dissector could crash.
> CVE-2015-0562 - The DEC DNA Routing Protocol dissector could crash.
> CVE-2015-0563 - The SMTP dissector could crash.
> CVE-2015-0564 - Wireshark could crash while decypting TLS/SSL sessions.
>
> Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
> ---
> package/wireshark/wireshark.hash | 6 +++---
> package/wireshark/wireshark.mk | 2 +-
> 2 files changed, 4 insertions(+), 4 deletions(-)
Applied, thanks!
Thomas
--
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2015-01-08 18:20 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2015-01-08 17:29 [Buildroot] [PATCH] wireshark: security bump to version 1.12.3 Gustavo Zacarias
2015-01-08 18:20 ` Thomas Petazzoni
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox