Sync from SUSE:ALP:Source:Standard:1.0 wireshark revision 652aa0f38842e67afb7f93520e7efcfd

2024-09-25 16:06:19 +02:00 · 2024-09-25 16:06:19 +02:00 · cb95147672
commit cb95147672
parent 0285680063
6 changed files with 139 additions and 90 deletions
--- a/wireshark-4.2.3.tar.xz
+++ b/wireshark-4.2.3.tar.xz
--- a/wireshark-4.2.3.tar.xz.hash
+++ b/wireshark-4.2.3.tar.xz.hash
@ -1,53 +0,0 @@
-----BEGIN PGP SIGNED MESSAGE-----
-Hash: SHA512
-
-wireshark-4.2.3.tar.xz: 44970016 bytes
-SHA256(wireshark-4.2.3.tar.xz)=958bd5996f543d91779b1a4e7e952dcd7b0245fe82194202c3333a8f78795811
-SHA1(wireshark-4.2.3.tar.xz)=b9d2bc4dbcf59c7295fa6cc98f5210a4e98a0b4e
-
-Wireshark-4.2.3-arm64.exe: 67875712 bytes
-SHA256(Wireshark-4.2.3-arm64.exe)=e6f10cfd71512c73ce8efcd436eaa811bf643cb45a31d25d9f7878bdd3aeb952
-SHA1(Wireshark-4.2.3-arm64.exe)=a1e50f3b743ff9ffde7e66c6399d317c5872e7c7
-
-Wireshark-4.2.3-x64.exe: 86371496 bytes
-SHA256(Wireshark-4.2.3-x64.exe)=3bf71d8753e3033376de95b8cde58d3f2a1a60e529b1dbdadfe907500c1f6525
-SHA1(Wireshark-4.2.3-x64.exe)=cd1ed1b825d825ed526a822a8237e8970dd53ff2
-
-Wireshark-4.2.3-x64.msi: 62910464 bytes
-SHA256(Wireshark-4.2.3-x64.msi)=565b2ec6aff533eb0059b3d7c7a512b62327edd2c29a6f5146a76bbf8227f072
-SHA1(Wireshark-4.2.3-x64.msi)=b6317a1af15a3e0a6439fa3971ab6588b8509738
-
-WiresharkPortable64_4.2.3.paf.exe: 53536936 bytes
-SHA256(WiresharkPortable64_4.2.3.paf.exe)=d115c2cd5cc7b198d798d4734ecebb4bd47ad64b3051d5f3c0689f52e3fda0d0
-SHA1(WiresharkPortable64_4.2.3.paf.exe)=f72a3cd0999c01fde8db3fd3ea6ddb5ff9ad4a76
-
-Wireshark 4.2.3 Arm 64.dmg: 65590438 bytes
-SHA256(Wireshark 4.2.3 Arm 64.dmg)=b11d86f650f4f751fbff4d741b16cbe2d57a35d8b83e87dcbd159c6980eff7ff
-SHA1(Wireshark 4.2.3 Arm 64.dmg)=1ffeee06f4cb0c8852321c248a9b5dcd2503c93c
-
-Wireshark 4.2.3 Intel 64.dmg: 69388046 bytes
-SHA256(Wireshark 4.2.3 Intel 64.dmg)=cea02d3d36c1cb8568abeb42a50b5169a26fd179a3726f4451e167c61243b846
-SHA1(Wireshark 4.2.3 Intel 64.dmg)=6d280914b3ac8eae7cad1073335ebba824d6de32
-
-You can validate these hashes using the following commands (among others):
-
-    Windows: certutil -hashfile Wireshark-win64-x.y.z.exe SHA256
-    Linux (GNU Coreutils): sha256sum wireshark-x.y.z.tar.xz
-    macOS: shasum -a 256 "Wireshark x.y.z Arm 64.dmg"
-    Other: openssl sha256 wireshark-x.y.z.tar.xz
-----BEGIN PGP SIGNATURE-----
-
-iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAmXNJOYACgkQgiRKeOb+
-rur4lA//U1YmtJl2N4qjNH6mnYyJxYPuwhMUqbROM44MzZkJVe04uKtgBJcUpTgh
-VgKlaY9sT1wUtQHPrhS3wSl1FifVi/wdVJV3zNxpSt6XP6HbY4KjxmJE9DHu7Vw8
-SsOBLtYi/N/VpZ52KXJT40tLzVWWtCMIRda+nEBNQ71ooQyCwVxeEeDONu9JNYFW
-ODdG8rVxJyknlYIaX8OEROghf10+7MbZ95LXC8Sm1MdOGiE16lo4mLZhcKigLwoG
-UuquXK/VV/REe1ifSs5U9VllyZ+vwfymYs9GjKU7WVkpXt088TRLQCsNfy3lDUVi
-82RSw/fAwjIGZgE9VczLIQ5AtQHnpMbmW4Z0+GxUMRHERK5Q10zdQ73g1whIrJ6w
-kRAcFSzl+V2OT9fvoHZv2RTWAAIUjvaJUJnmqD4UkBwf0Zot1GMX3mvhgtVO4II0
-UdY3fqNo5kXuG1YEL2Ptl2FVZ0VVBwTgLO9fmgHCC/M98pTQdQBFEd/d40ugv0g8
-cV7fJuOkedpYO2t/0MNPsAuBfLT6reZpR2CLpzsZIfRFdqzZN5E9YvcAgw9v8TRz
-1H0NsECr88KxJDukWfPqzXvKwy4vCZzECDEhC4ihbri1UwPV3OnPzTRzaSbv/OP3
-4pfrPaST5va4lFoLl1t0s6XXFcaHD0mzL0QrxkSef7AswOq0QPA=
-=HNLY
-----END PGP SIGNATURE-----
--- a/wireshark-4.2.7.tar.xz
+++ b/wireshark-4.2.7.tar.xz
--- a/wireshark-4.2.7.tar.xz.hash
+++ b/wireshark-4.2.7.tar.xz.hash
@ -0,0 +1,53 @@
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA512
+
+wireshark-4.2.7.tar.xz: 45017312 bytes
+SHA256(wireshark-4.2.7.tar.xz)=2c5de08e19081bd666a2ce3f052c023274d06acaabc5d667a3c3051a9c618f86
+SHA1(wireshark-4.2.7.tar.xz)=90624e262733bcb111081927d1e60a35301251b9
+
+Wireshark-4.2.7-x64.exe: 86501096 bytes
+SHA256(Wireshark-4.2.7-x64.exe)=a85375070cba58c1c53c051e85643651ea37840022eb13358c54bbc6fb83193f
+SHA1(Wireshark-4.2.7-x64.exe)=e9d7ce19a037421008449a372e47b18219ca196e
+
+Wireshark-4.2.7-arm64.exe: 67998504 bytes
+SHA256(Wireshark-4.2.7-arm64.exe)=19773c593b6a1bda9921c57407f96f85a19ad0c83a1e40541982b1e61b81e49c
+SHA1(Wireshark-4.2.7-arm64.exe)=54dbb2a22348148140cbe421bf52fb88ee35f2dc
+
+Wireshark-4.2.7-x64.msi: 63148032 bytes
+SHA256(Wireshark-4.2.7-x64.msi)=5afa8e3a146c70a62e9922e7c7136ff6274baa8a145a823521fa1fcdb01779fb
+SHA1(Wireshark-4.2.7-x64.msi)=353e8fa795a365dbae4d4a9d47e89d20e7f64a02
+
+WiresharkPortable64_4.2.7.paf.exe: 53663376 bytes
+SHA256(WiresharkPortable64_4.2.7.paf.exe)=9955764524973f2d35b80b2904c3413e391d40ddfdbb42e47a45ef1fa49241eb
+SHA1(WiresharkPortable64_4.2.7.paf.exe)=5be19351f0c15edcc1c8f2875dcde53dd653c254
+
+Wireshark 4.2.7 Arm 64.dmg: 65582345 bytes
+SHA256(Wireshark 4.2.7 Arm 64.dmg)=3853a900941df1d13be64ff2bebc47da5ffe81328650f7ab7546011792aa1c29
+SHA1(Wireshark 4.2.7 Arm 64.dmg)=f7e31c4a0f199ef82dd9f3ddababe97794d12b36
+
+Wireshark 4.2.7 Intel 64.dmg: 69349139 bytes
+SHA256(Wireshark 4.2.7 Intel 64.dmg)=21d1bb5fa3e79328c5790de1374a81ca1975d11d2d695cd90469e8032b729844
+SHA1(Wireshark 4.2.7 Intel 64.dmg)=a1d8c9025fccf4d8837fd05314613b4517003690
+
+You can validate these hashes using the following commands (among others):
+
+    Windows: certutil -hashfile Wireshark-win64-x.y.z.exe SHA256
+    Linux (GNU Coreutils): sha256sum wireshark-x.y.z.tar.xz
+    macOS: shasum -a 256 "Wireshark x.y.z Arm 64.dmg"
+    Other: openssl sha256 wireshark-x.y.z.tar.xz
+-----BEGIN PGP SIGNATURE-----
+
+iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAmbPm2MACgkQgiRKeOb+
+ruo/LRAAjgOV5ZhbWPA8HwTYsGXfWOKCkne7/l3IM+PQRdN/iBDg/jW1CLqbTyk/
+zGgxcpYdyh8m2iBqDrWpFv2TZXRNUjcUrxcjyW2JXUXdqu/XCegHVgcr9pL4r61x
+QwTbe68kofUy+cgqrRp/dPqLaNmxRZyGeig6dOnc/y+O9XwAShEUuwkMwhpK526r
+j1Hs4GdvTciOTVM0178VSlHV9ORfzxEBOKCu3KNYMEbBHUy57LideUWJK3wnhcG/
+nQZnewCZ3cz4Pz0UjcOU21yLWqY3aXWJQ9VMWf8fo/T/q7/2B7Pu2wAcZQW4vZvf
+0jzIeVpTG0aaEELenESXvQDG8V2mVulfDqT3v0iJ7MeaT/mTe8uTp05W0BERpRKf
+s3SCR/yBDgzNCCW2rHFPuJlYzpLxMzZkp1mAD+DdtDH5wWLgOJcjyCAg1JryXR3e
+Duv4/CCyvDDLMhvwZB2x8VaOrUzV76nax3ygd/tHulO5S+irDFopXTjuqFhvaUI9
+q1kDdpg7ZjEuja4NkPyS1Oe08+OUnQaBa4UYRo9fju+eCv6usKZvIpPbkD3jWWNt
+C0lnY/LX3QmUU2aBPbNoX0eutTxKQ0x0tVsDG6XDUtXpfxoHFL0rKw63mFBdfPpH
+Rmilpi9MR5H5xNL58HMAisjC+5p9xIEyFyAbW+HDSutSRJAYICI=
+=2g4W
+-----END PGP SIGNATURE-----
--- a/wireshark.changes
+++ b/wireshark.changes
@ -1,3 +1,47 @@
+-------------------------------------------------------------------
+Thu Aug 29 07:09:42 UTC 2024 - Robert Frohl <rfrohl@suse.com>
+
+- Wireshark 4.2.7:
+  * CVE-2024-8250: NTLMSSP dissector crash (boo#1229907).
+- Further features, bug fixes and updated protocol support as listed in:
+  https://www.wireshark.org/docs/relnotes/wireshark-4.2.7.html
+
+-------------------------------------------------------------------
+Wed Jul 10 20:06:41 UTC 2024 - Robert Frohl <rfrohl@suse.com>
+
+- Wireshark 4.2.6 (jsc#PED-8517):
+  * SPRT dissector crash.
+- Further features, bug fixes and updated protocol support as listed in:
+  https://www.wireshark.org/docs/relnotes/wireshark-4.2.6.html
+
+-------------------------------------------------------------------
+Wed Jun 19 12:34:54 UTC 2024 - Markus Ebner <info@ebner-markus.de>
+
+- Fix Wireshark Super User Mode starter
+
+-------------------------------------------------------------------
+Wed May 15 19:55:19 UTC 2024 - Andreas Stieger <andreas.stieger@gmx.de>
+
+- Wireshark 4.2.5:
+  * CVE-2024-4854: MONGO and ZigBee TLV dissector infinite loops
+    (wnpa-sec-2024-07 boo#1224274)
+  * CVE-2024-4853: The editcap command line utility could crash
+    when chopping bytes from the beginning of a packet
+    (wnpa-sec-2024-08 boo#1224259)
+  * CVE-2024-4855: The editcap command line utility could crash
+    when injecting secrets while writing multiple files
+    (wnpa-sec-2024-09 boo#1224276)
+- Further features, bug fixes and updated protocol support as listed in:
+  https://www.wireshark.org/docs/relnotes/wireshark-4.2.5.html
+
+-------------------------------------------------------------------
+Thu Mar 28 06:48:56 UTC 2024 - Robert Frohl <rfrohl@suse.com>
+
+- Wireshark 4.2.4:
+  * CVE-2024-2955: T.38 dissector crash (boo#1222030).
+- Further features, bug fixes and updated protocol support as listed in:
+  https://www.wireshark.org/docs/relnotes/wireshark-4.2.4.html
+
 -------------------------------------------------------------------
 Thu Feb 15 08:13:24 UTC 2024 - Robert Frohl <rfrohl@suse.com>

@ -67,6 +111,8 @@ Wed Nov 29 15:05:49 UTC 2023 - Dominique Leuenberger <dimstar@opensuse.org>
 Fri Nov 24 09:40:38 UTC 2023 - Robert Frohl <rfrohl@suse.com>

 - Wireshark 4.2.0:
+  * CVE-2024-24476: Fixed buffer overflow in ws_manuf_lookup_str() (boo#1220181).
+  * CVE-2022-3725: Fixed integer overflow in the OPUS dissector (boo#1204822).
  * Packet list sorting has been improved.
  * Wireshark and TShark are now better about generating valid UTF-8 output.
  * A new display filter feature for filtering raw bytes has been added.
--- a/wireshark.spec
+++ b/wireshark.spec
@ -2,6 +2,7 @@
 # spec file for package wireshark
 #
 # Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2024 Andreas Stieger <Andreas.Stieger@gmx.de>
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@ -21,14 +22,14 @@
 %define libutil libwsutil15
 %define libwire libwireshark17
 %define org_name org.wireshark.Wireshark
-%bcond_without qt5
 %if 0%{?suse_version} >= 1500
 %bcond_without lz4
 %else
 %bcond_with lz4
 %endif
+%bcond_without qt5
 Name:           wireshark
-Version:        4.2.3
+Version:        4.2.7
 Release:        0
 Summary:        A Network Traffic Analyser
 License:        GPL-2.0-or-later AND GPL-3.0-or-later
@ -66,6 +67,20 @@ BuildRequires:  spandsp-devel
 BuildRequires:  tcpd-devel
 BuildRequires:  update-desktop-files
 BuildRequires:  zlib-devel
+BuildRequires:  pkgconfig(libmaxminddb)
+BuildRequires:  pkgconfig(libnghttp2)
+BuildRequires:  pkgconfig(libnl-3.0)
+BuildRequires:  pkgconfig(libssh) >= 0.6.0
+BuildRequires:  pkgconfig(libsystemd)
+BuildRequires:  pkgconfig(libxml-2.0)
+BuildRequires:  pkgconfig(minizip)
+BuildRequires:  pkgconfig(opus)
+BuildRequires:  pkgconfig(sbc)
+BuildRequires:  pkgconfig(speexdsp)
+Requires(pre):  permissions
+Requires(pre):  shadow
+Recommends:     wireshark-ui = %{version}
+Provides:       group(wireshark)
 %if %{with qt5}
 BuildRequires:  libqt5-linguist-devel
 BuildRequires:  pkgconfig(Qt5Concurrent) >= 5.3.0
@ -86,20 +101,6 @@ BuildRequires:  pkgconfig(Qt6PrintSupport)
 BuildRequires:  pkgconfig(Qt6Svg)
 BuildRequires:  pkgconfig(Qt6Widgets)
 %endif
-BuildRequires:  pkgconfig(libmaxminddb)
-BuildRequires:  pkgconfig(libnghttp2)
-BuildRequires:  pkgconfig(libnl-3.0)
-BuildRequires:  pkgconfig(libssh) >= 0.6.0
-BuildRequires:  pkgconfig(libsystemd)
-BuildRequires:  pkgconfig(libxml-2.0)
-BuildRequires:  pkgconfig(minizip)
-BuildRequires:  pkgconfig(opus)
-BuildRequires:  pkgconfig(sbc)
-BuildRequires:  pkgconfig(speexdsp)
-Requires(pre):  permissions
-Requires(pre):  shadow
-Recommends:     wireshark-ui = %{version}
-Provides:       group(wireshark)
 %if 0%{?is_opensuse} && 0%{?suse_version} >= 1550
 # enable ITU G.729 Annex A/B speech codec only in Tumbleweed
 BuildRequires:  pkgconfig(libbcg729)
@ -199,9 +200,9 @@ echo "`grep %{name}-%{version}.tar.xz %{SOURCE2} | grep SHA256 | head -n1 | cut
 %cmake_install
 cmake --install build --component Development --prefix %{buildroot}%{_prefix}

-cmakedocdir=/usr/share/doc/packages/wireshark
-if [ -d  %{buildroot}/usr/share/doc/wireshark ]; then
-   cmakedocdir=/usr/share/doc/wireshark
+cmakedocdir=%{_docdir}/wireshark
+if [ -d  %{buildroot}%{_datadir}/doc/wireshark ]; then
+   cmakedocdir=%{_datadir}/doc/wireshark
 fi
 # removing doc files that are not needed
 rm %{buildroot}/${cmakedocdir}/COPYING
@ -215,7 +216,7 @@ install -d -m 0755 %{buildroot}%{_mandir}/man1/
 # desktop file
 cp resources/freedesktop/%{org_name}.desktop %{buildroot}%{_datadir}/applications/%{org_name}-su.desktop
 sed -i -e 's|Name=Wireshark|Name=Wireshark - Super User Mode|g' %{buildroot}%{_datadir}/applications/%{org_name}-su.desktop
-sed -i -e 's|Exec=wireshark %f|Exec=xdg-su -c wireshark %f|g' %{buildroot}%{_datadir}/applications/%{org_name}-su.desktop
+sed -i -e 's|^Exec=wireshark|Exec=xdg-su -c wireshark|g' %{buildroot}%{_datadir}/applications/%{org_name}-su.desktop

 %suse_update_desktop_file %{org_name}
 %suse_update_desktop_file %{org_name}-su
@ -232,12 +233,17 @@ getent group wireshark >/dev/null || groupadd -r wireshark
 %set_permissions %{_bindir}/dumpcap
 exit 0

-%post -n %{libutil} -p /sbin/ldconfig
-%postun -n %{libutil} -p /sbin/ldconfig
-%post -n %{libwire} -p /sbin/ldconfig
-%postun -n %{libwire} -p /sbin/ldconfig
-%post -n %{libtap} -p /sbin/ldconfig
-%postun -n %{libtap} -p /sbin/ldconfig
+%post ui-qt
+%desktop_database_post
+%icon_theme_cache_post
+
+%postun ui-qt
+%desktop_database_postun
+%icon_theme_cache_postun
+
+%ldconfig_scriptlets -n %{libutil}
+%ldconfig_scriptlets -n %{libwire}
+%ldconfig_scriptlets -n %{libtap}

 %files
 %license COPYING
@ -261,21 +267,26 @@ exit 0
 %{_datadir}/wireshark/

 %files -n %{libutil}
+%license COPYING
 %{_libdir}/libwsutil*.so.*

 %files -n %{libwire}
+%license COPYING
 %{_libdir}/libwireshark.so.*

 %files -n %{libtap}
+%license COPYING
 %{_libdir}/libwiretap.so.*

 %files devel
+%license COPYING
 %{_includedir}/wireshark/
 %{_libdir}/lib*.so
 %{_libdir}/pkgconfig/wireshark.pc
 %{_libdir}/cmake/wireshark/

 %files ui-qt
+%license COPYING
 %{_bindir}/wireshark
 %{_datadir}/applications/%{org_name}.desktop
 %{_datadir}/applications/%{org_name}-su.desktop
@ -284,12 +295,4 @@ exit 0
 %{_datadir}/mime/packages/%{org_name}.xml
 %{_datadir}/metainfo/%{org_name}.metainfo.xml

-%post ui-qt
-%desktop_database_post
-%icon_theme_cache_post
-
-%postun ui-qt
-%desktop_database_postun
-%icon_theme_cache_postun
-
 %changelog