Accepting request 519687 from network:utilities

Wireshark 2.4.1:
  * CVE-2017-13767: MSDP dissector infinite loop (bsc#1056248)
  * CVE-2017-13766: Profinet I/O buffer overrun (bsc#1056249)
  * CVE-2017-13764: Modbus dissector crash (bsc#1056250)
  * CVE-2017-13765: IrCOMM dissector buffer overrun (bsc#1056251)

OBS-URL: https://build.opensuse.org/request/show/519687
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/wireshark?expand=0&rev=128
This commit is contained in:
Dominique Leuenberger 2017-08-31 19:03:31 +00:00 committed by Git OBS Bridge
commit 9f4927f95e
6 changed files with 82 additions and 67 deletions

View File

@ -1,60 +0,0 @@
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
wireshark-2.4.0.tar.xz: 28755596 bytes
SHA256(wireshark-2.4.0.tar.xz)=890bb41b826ff04e98fb089446ab37e5871e16205278bfeffc2a7c7364de3b04
RIPEMD160(wireshark-2.4.0.tar.xz)=277b417c0e52f7e5ad9278c63a7d5ac74e552518
SHA1(wireshark-2.4.0.tar.xz)=aa8f53300f60956553902ccc755c0dfe86f768fc
MD5(wireshark-2.4.0.tar.xz)=655106f8cf3bb8f521336d3a8ab5b10b
Wireshark-win64-2.4.0.exe: 59110928 bytes
SHA256(Wireshark-win64-2.4.0.exe)=341f97b1d8fc25b4e149fb20b718451aa8646856faa0576071037e60ed47f8b0
RIPEMD160(Wireshark-win64-2.4.0.exe)=57c5eca5d4efcb1c2b8c80cd79e6cb4d505e9c03
SHA1(Wireshark-win64-2.4.0.exe)=0452d3aa7ad1cc1240c0cdd9457159de244ca8be
MD5(Wireshark-win64-2.4.0.exe)=f611afe4a6d59f7ad18fd573232e30fe
Wireshark-win32-2.4.0.exe: 53570224 bytes
SHA256(Wireshark-win32-2.4.0.exe)=971e6021d6ba214aa938ff43436b70525efc8f5286e556066dfa4863603e7c5e
RIPEMD160(Wireshark-win32-2.4.0.exe)=04cd96b19aff8375fe1217c1829a850d1a3753ca
SHA1(Wireshark-win32-2.4.0.exe)=6e8351cb2aba06173aabc907922338edbcda63d2
MD5(Wireshark-win32-2.4.0.exe)=d96a10a99ca06e36528a0e6c662c17e5
Wireshark-win32-2.4.0.msi: 43032576 bytes
SHA256(Wireshark-win32-2.4.0.msi)=b730430387efab0bc3b01e5f10a2e708672d75157663c251fcb20431d6649a9f
RIPEMD160(Wireshark-win32-2.4.0.msi)=d726fbb03f9fdf64771620955ec6ae1924b23fbf
SHA1(Wireshark-win32-2.4.0.msi)=fe3cb12f5efa30e0619e81ba81271b334e4cd053
MD5(Wireshark-win32-2.4.0.msi)=5cd3e1b7ed315c3f5e928c9c8001dbf9
Wireshark-win64-2.4.0.msi: 48455680 bytes
SHA256(Wireshark-win64-2.4.0.msi)=609262ab1ecdda6fd3ed3a5ccddfb5b8d939b7a28616c5dacddcb1528c2b02d9
RIPEMD160(Wireshark-win64-2.4.0.msi)=e74ec7c8892a9413074cb1474d9fa335829c05be
SHA1(Wireshark-win64-2.4.0.msi)=1f4437025097362c8e76841a7569bb72da6cd036
MD5(Wireshark-win64-2.4.0.msi)=6fb4c41eb8a5300e0b0200ea7c1d56a4
WiresharkPortable_2.4.0.paf.exe: 46243888 bytes
SHA256(WiresharkPortable_2.4.0.paf.exe)=76dfafd12ad82a19fffe0d99b48e9ba5dd1b77ce9c566dcf19cdf32fffb40f22
RIPEMD160(WiresharkPortable_2.4.0.paf.exe)=65cbdfca286976a652a931c8e0c989c4e431efbe
SHA1(WiresharkPortable_2.4.0.paf.exe)=8c84ecf4455f34f7624ae1056f1af568a02bd2e0
MD5(WiresharkPortable_2.4.0.paf.exe)=8544747f6a4a89ee88d965953a1ff8b1
Wireshark 2.4.0 Intel 64.dmg: 35144406 bytes
SHA256(Wireshark 2.4.0 Intel 64.dmg)=20c2e5fa8ec302fc47100ad42f8d2020e629a72b75a7343929206d3274bd08b2
RIPEMD160(Wireshark 2.4.0 Intel 64.dmg)=978eab476a2ab3dcae2080902dc3d8f223f21aed
SHA1(Wireshark 2.4.0 Intel 64.dmg)=5aecbddef5a762a0a4c36c9312b727bf671c0992
MD5(Wireshark 2.4.0 Intel 64.dmg)=2cf632f801dc810c5f0378fa983fc9e9
-----BEGIN PGP SIGNATURE-----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=DSoc
-----END PGP SIGNATURE-----

60
SIGNATURES-2.4.1.txt Normal file
View File

@ -0,0 +1,60 @@
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
wireshark-2.4.1.tar.xz: 28780384 bytes
SHA256(wireshark-2.4.1.tar.xz)=02ddbcf9b10f9dfa1e36eec00fe00cb5b5ce8e07203843baf056ac7909911fcd
RIPEMD160(wireshark-2.4.1.tar.xz)=4e47f79741fe09ed404e03ab51be617abc3ae3d5
SHA1(wireshark-2.4.1.tar.xz)=2a52aeefba0a45747b1e4593c82c6efc33aa4182
MD5(wireshark-2.4.1.tar.xz)=22b925108e0b65d6560f0af161157266
Wireshark-win32-2.4.1.exe: 53597448 bytes
SHA256(Wireshark-win32-2.4.1.exe)=8a2be35c125010538692130af6fc4f9384e3a3caa4f49eec7fc17e238512c067
RIPEMD160(Wireshark-win32-2.4.1.exe)=a9c9567857ca768835ed9ab040a2ae1b86df779f
SHA1(Wireshark-win32-2.4.1.exe)=392c5eebe1aef355e6e660e34cb98ad2dde5e2b2
MD5(Wireshark-win32-2.4.1.exe)=f7daa36cdd469bf067e258c9d1847ee6
Wireshark-win64-2.4.1.exe: 59132608 bytes
SHA256(Wireshark-win64-2.4.1.exe)=c97d6a43bca6e706975b45bfa99d320674003673f8bc8337954694ef14e6cc26
RIPEMD160(Wireshark-win64-2.4.1.exe)=70efd612db44caa65f40946557891fd952445a4e
SHA1(Wireshark-win64-2.4.1.exe)=0ccf8188aa3970adea3003c0e7bff12cd6d34313
MD5(Wireshark-win64-2.4.1.exe)=2e71aed667c5a6de9acced176a504939
Wireshark-win32-2.4.1.msi: 43048960 bytes
SHA256(Wireshark-win32-2.4.1.msi)=467f29e274fa6da0072295198217ba324db7885d49f1d6e6e40008622ffe3ea0
RIPEMD160(Wireshark-win32-2.4.1.msi)=16832d856347c305c14403e65c79f10c7961affd
SHA1(Wireshark-win32-2.4.1.msi)=a04faea8ee31bbd621719605c95ade9536aebab6
MD5(Wireshark-win32-2.4.1.msi)=9000a088689fcd24253d363a853bb7aa
Wireshark-win64-2.4.1.msi: 48398336 bytes
SHA256(Wireshark-win64-2.4.1.msi)=7a75a2eebfa197dd34c17707ddf6065921b24af58470fa85d44498402866db1c
RIPEMD160(Wireshark-win64-2.4.1.msi)=13ae3e3cace6968af1507d26d5b0224f3a5c427c
SHA1(Wireshark-win64-2.4.1.msi)=5f533bf7e6226ebb9d59f0cef149015869364e69
MD5(Wireshark-win64-2.4.1.msi)=cfb3b9fe4b73e4cb6d5bfc0b37b7d841
WiresharkPortable_2.4.1.paf.exe: 46309696 bytes
SHA256(WiresharkPortable_2.4.1.paf.exe)=f75753a335cb6278527c21822c07a08a3ca977c83da23c7fc80c7bbdf3fabcce
RIPEMD160(WiresharkPortable_2.4.1.paf.exe)=953ed214dc32d07fa5891ec8738180a21b95a0d2
SHA1(WiresharkPortable_2.4.1.paf.exe)=3ac54e3129c82c919c8c00fd5ce28cd8d8230297
MD5(WiresharkPortable_2.4.1.paf.exe)=bee21315ce99ecfff83f61d950be8d46
Wireshark 2.4.1 Intel 64.dmg: 35197766 bytes
SHA256(Wireshark 2.4.1 Intel 64.dmg)=cbf1f66020d049e645edd9ee8f0ebdd7d71d019d3fb2c44e028fcd65195b268b
RIPEMD160(Wireshark 2.4.1 Intel 64.dmg)=37c33371a0b142fea753f3723f6a30f7476fea18
SHA1(Wireshark 2.4.1 Intel 64.dmg)=d841c155e6aa8681cefdaffec4b95432de865957
MD5(Wireshark 2.4.1 Intel 64.dmg)=911497d6ea05821321a824bae57d7835
-----BEGIN PGP SIGNATURE-----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=JnJn
-----END PGP SIGNATURE-----

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:890bb41b826ff04e98fb089446ab37e5871e16205278bfeffc2a7c7364de3b04
size 28755596

3
wireshark-2.4.1.tar.xz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:02ddbcf9b10f9dfa1e36eec00fe00cb5b5ce8e07203843baf056ac7909911fcd
size 28780384

View File

@ -1,3 +1,18 @@
-------------------------------------------------------------------
Tue Aug 29 21:38:52 UTC 2017 - astieger@suse.com
- Wireshark 2.4.1:
This release fixes minor vulnerabilities that could be used to
trigger dissector crashes, infinite loops, or cause excessive use
of memory resources by making Wireshark read specially crafted
packages from the network or a capture file:
* CVE-2017-13767: MSDP dissector infinite loop (bsc#1056248)
* CVE-2017-13766: Profinet I/O buffer overrun (bsc#1056249)
* CVE-2017-13764: Modbus dissector crash (bsc#1056250)
* CVE-2017-13765: IrCOMM dissector buffer overrun (bsc#1056251)
* Further bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-2.4.1.html
-------------------------------------------------------------------
Sat Aug 26 15:11:56 UTC 2017 - jengelh@inai.de
@ -56,7 +71,7 @@ Tue Jul 18 21:29:37 UTC 2017 - astieger@suse.com
- Wireshark 2.2.8 (bsc#1049255):
This release fixes minor vulnerabilities that could be used to
trigger dissector crashes, infinite loopsm or cause excessive use
trigger dissector crashes, infinite loops, or cause excessive use
of memory resources by making Wireshark read specially crafted
packages from the network or a capture file:
* CVE-2017-7702 CVE-2017-11410: WBMXL dissector infinite loop
@ -72,7 +87,7 @@ Fri Jun 2 09:21:15 UTC 2017 - astieger@suse.com
- Wireshark 2.2.7 (bsc#1042330):
This release fixes minor vulnerabilities that could be used to
trigger dissector crashes, infinite loopsm or cause excessive use
trigger dissector crashes, infinite loops, or cause excessive use
of CPU resources by making Wireshark read specially crafted
packages from the network or a capture file:
* CVE-2017-9352: Bazaar dissector infinite loop (bsc#1042304)

View File

@ -20,7 +20,7 @@
%define libutil libwsutil8
%define libwire libwireshark10
%define libtap libwiretap7
%define libcodecs libwscodecs0
%define libcodecs libwscodecs1
# disable caps
%define use_caps 0
# Enable new Qt gui on new releases and build old GTK2 gui on old releases
@ -36,7 +36,7 @@
%bcond_with geoip
%endif
Name: wireshark
Version: 2.4.0
Version: 2.4.1
Release: 0
Summary: A Network Traffic Analyser
License: GPL-2.0+ AND GPL-3.0+