* [Buildroot] [PATCH 1/1] package/wireshark: security bump to version 4.0.11
@ 2023-12-03 22:23 Fabrice Fontaine
2023-12-04 7:30 ` Peter Korsgaard
0 siblings, 1 reply; 2+ messages in thread
From: Fabrice Fontaine @ 2023-12-03 22:23 UTC (permalink / raw)
To: buildroot; +Cc: Fabrice Fontaine
Fix CVE-2023-6174: SSH dissector crash in Wireshark 4.0.0 to 4.0.10
allows denial of service via packet injection or crafted capture file
https://www.wireshark.org/security/wnpa-sec-2023-28
https://www.wireshark.org/security/wnpa-sec-2023-29
https://www.wireshark.org/docs/relnotes/wireshark-4.0.11.html
Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
---
package/wireshark/wireshark.hash | 6 +++---
package/wireshark/wireshark.mk | 2 +-
2 files changed, 4 insertions(+), 4 deletions(-)
diff --git a/package/wireshark/wireshark.hash b/package/wireshark/wireshark.hash
index c9b693c9cb..a6ef69b1af 100644
--- a/package/wireshark/wireshark.hash
+++ b/package/wireshark/wireshark.hash
@@ -1,6 +1,6 @@
-# From https://www.wireshark.org/download/src/all-versions/SIGNATURES-4.0.10.txt
-sha1 830ba7ff602da90323bbc5ec15941c0878d9ee4a wireshark-4.0.10.tar.xz
-sha256 b2e3ff03fa2be9058a9ffbedd12b0a670433bd16c8cc6c432ab48dabc2df1898 wireshark-4.0.10.tar.xz
+# From https://www.wireshark.org/download/src/all-versions/SIGNATURES-4.0.11.txt
+sha1 4af3140d69f9d41e1c4e161fad66304a6920ddce wireshark-4.0.11.tar.xz
+sha256 4c341cc33a6c512d983f4126e6f3e5c249f604e14ab7f337d38b1cbe58199e3d wireshark-4.0.11.tar.xz
# Locally calculated
sha256 8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643 COPYING
diff --git a/package/wireshark/wireshark.mk b/package/wireshark/wireshark.mk
index 2f563950b2..6fb4b60f2b 100644
--- a/package/wireshark/wireshark.mk
+++ b/package/wireshark/wireshark.mk
@@ -4,7 +4,7 @@
#
################################################################################
-WIRESHARK_VERSION = 4.0.10
+WIRESHARK_VERSION = 4.0.11
WIRESHARK_SOURCE = wireshark-$(WIRESHARK_VERSION).tar.xz
WIRESHARK_SITE = https://www.wireshark.org/download/src/all-versions
WIRESHARK_LICENSE = wireshark license
--
2.42.0
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply related [flat|nested] 2+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/wireshark: security bump to version 4.0.11
2023-12-03 22:23 [Buildroot] [PATCH 1/1] package/wireshark: security bump to version 4.0.11 Fabrice Fontaine
@ 2023-12-04 7:30 ` Peter Korsgaard
0 siblings, 0 replies; 2+ messages in thread
From: Peter Korsgaard @ 2023-12-04 7:30 UTC (permalink / raw)
To: Fabrice Fontaine; +Cc: buildroot
>>>>> "Fabrice" == Fabrice Fontaine <fontaine.fabrice@gmail.com> writes:
> Fix CVE-2023-6174: SSH dissector crash in Wireshark 4.0.0 to 4.0.10
> allows denial of service via packet injection or crafted capture file
> https://www.wireshark.org/security/wnpa-sec-2023-28
> https://www.wireshark.org/security/wnpa-sec-2023-29
> https://www.wireshark.org/docs/relnotes/wireshark-4.0.11.html
> Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Committed, thanks.
--
Bye, Peter Korsgaard
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2023-12-04 7:30 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2023-12-03 22:23 [Buildroot] [PATCH 1/1] package/wireshark: security bump to version 4.0.11 Fabrice Fontaine
2023-12-04 7:30 ` Peter Korsgaard
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox