SHA256
1
0
forked from pool/wireshark

Accepting request 838204 from network:utilities

* CVE-2020-25863: MIME Multipart dissector crash (boo#1176908)
  * CVE-2020-25862: TCP dissector crash (boo#1176909)
  * CVE-2020-25866: BLIP dissector crash (boo#1176910) (forwarded request 836544 from AndreasStieger)

OBS-URL: https://build.opensuse.org/request/show/838204
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/wireshark?expand=0&rev=162
This commit is contained in:
Dominique Leuenberger 2020-09-29 16:59:33 +00:00 committed by Git OBS Bridge
commit 302370f6dd
6 changed files with 74 additions and 64 deletions

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:ebb1eebe39bcecee02195dc328dd25f6862fc9e9dea4c2e29eae50537d5eb4f2
size 31635628

View File

@ -1,60 +0,0 @@
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
wireshark-3.2.6.tar.xz: 31635628 bytes
SHA256(wireshark-3.2.6.tar.xz)=ebb1eebe39bcecee02195dc328dd25f6862fc9e9dea4c2e29eae50537d5eb4f2
RIPEMD160(wireshark-3.2.6.tar.xz)=09dcd3a088aa339e18871b053c9c8d8414b25a6a
SHA1(wireshark-3.2.6.tar.xz)=e8f3e6cb9072670c8bdbbff7e5fe3ccd5203d35e
Wireshark-win64-3.2.6.exe: 60127072 bytes
SHA256(Wireshark-win64-3.2.6.exe)=9c211a6eda5f69b2c10dd1a794f8a438c1dafbe5da4879b807be496d8f29a6c4
RIPEMD160(Wireshark-win64-3.2.6.exe)=b7b61d4529ba496f51f3ac024d1e600d6067b5ca
SHA1(Wireshark-win64-3.2.6.exe)=f511c383cd0fcd946e1e45ad302c0c6980631f60
Wireshark-win32-3.2.6.exe: 54946856 bytes
SHA256(Wireshark-win32-3.2.6.exe)=1b0b2a495878710417bb49640971d8188039c60d669a5ca8cfa273b027274d49
RIPEMD160(Wireshark-win32-3.2.6.exe)=15b647b21f634f0915ada7967ec07283a8ff940b
SHA1(Wireshark-win32-3.2.6.exe)=4d0f9ae18a4f3f48b4d291b8e29e59128745fcb7
Wireshark-win32-3.2.6.msi: 43106304 bytes
SHA256(Wireshark-win32-3.2.6.msi)=9af91fe9a26c5c5d8beecec5cdcb7020e2af44ab8c59cc8743dc6e20d16a0c37
RIPEMD160(Wireshark-win32-3.2.6.msi)=7e1201a6d3163c5d1dcda7068a8f15ead4065cd6
SHA1(Wireshark-win32-3.2.6.msi)=ca7edd76834e153a8e1465e6ebc58b011000b188
Wireshark-win64-3.2.6.msi: 48390144 bytes
SHA256(Wireshark-win64-3.2.6.msi)=d9682bff0a00d4a9cd58ea80540da81013a0700d44e506729893d4baef32ed5b
RIPEMD160(Wireshark-win64-3.2.6.msi)=4fc039e4bd8a386e57f4e0284e548fd1f2a08798
SHA1(Wireshark-win64-3.2.6.msi)=ecc95fdeb9a9f73d8ff248d43818dc4ef81f57e7
WiresharkPortable_3.2.6.paf.exe: 36687280 bytes
SHA256(WiresharkPortable_3.2.6.paf.exe)=886e45f3b3b3a25b1bbb7c65a4a5cd4c22e6635a73e5d8196d08f23f86911a2f
RIPEMD160(WiresharkPortable_3.2.6.paf.exe)=300a71ab95d97287f5723b32b8aa58b0fb7145e1
SHA1(WiresharkPortable_3.2.6.paf.exe)=eb380345293092fbe11c8c936d9ff8afb58ea7ab
Wireshark 3.2.6 Intel 64.dmg: 97726755 bytes
SHA256(Wireshark 3.2.6 Intel 64.dmg)=e63b7345e8a068a4c3e6dcd8b2de61fe66c03e78f3c8002a94829d152e1566d5
RIPEMD160(Wireshark 3.2.6 Intel 64.dmg)=bb638976af3258e556dbc9315e972ef26b09a673
SHA1(Wireshark 3.2.6 Intel 64.dmg)=31827acde32986cb2722228a49179a1c733f5c01
You can validate these hashes using the following commands (among others):
Windows: certutil -hashfile Wireshark-win64-x.y.z.exe SHA256
Linux (GNU Coreutils): sha256sum wireshark-x.y.z.tar.xz
macOS: shasum -a 256 "Wireshark x.y.z Intel 64.dmg"
Other: openssl sha256 wireshark-x.y.z.tar.xz
-----BEGIN PGP SIGNATURE-----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=Z//F
-----END PGP SIGNATURE-----

3
wireshark-3.2.7.tar.xz Normal file
View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:be832fb86d9c455c5be8b225a755cdc77cb0e92356bdfc1fe4b000d93f7d70da
size 31659996

View File

@ -0,0 +1,60 @@
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
wireshark-3.2.7.tar.xz: 31659996 bytes
SHA256(wireshark-3.2.7.tar.xz)=be832fb86d9c455c5be8b225a755cdc77cb0e92356bdfc1fe4b000d93f7d70da
RIPEMD160(wireshark-3.2.7.tar.xz)=81787ab8814cba0452da9cb45fcfd988da5ec587
SHA1(wireshark-3.2.7.tar.xz)=b564c2e729066cb7c952463fef6163e23a5fea1e
Wireshark-win64-3.2.7.exe: 60139752 bytes
SHA256(Wireshark-win64-3.2.7.exe)=d418b047d8f77d6ae804a5121d18d941bc45ca47c30f553d0034d6136c3069a4
RIPEMD160(Wireshark-win64-3.2.7.exe)=9d13f6ff774c53b8132e699632981fcb4a62cfb9
SHA1(Wireshark-win64-3.2.7.exe)=fb729e381b42583358fdc7459d1558c6ee640925
Wireshark-win32-3.2.7.exe: 54971224 bytes
SHA256(Wireshark-win32-3.2.7.exe)=5b41010a28857bf842ddd671d13896ff7a186144e792e674ac0b5d87b50e3934
RIPEMD160(Wireshark-win32-3.2.7.exe)=badf7e3b4039bdb55e1f93c4bd4d2ec9163976d4
SHA1(Wireshark-win32-3.2.7.exe)=523aba9b39c50e2d491912778beb604209bc7053
Wireshark-win64-3.2.7.msi: 48414720 bytes
SHA256(Wireshark-win64-3.2.7.msi)=bbf11f1b14f862ce05880529766310a46d9f9edfc614beec00b6f6ac9e0c6855
RIPEMD160(Wireshark-win64-3.2.7.msi)=eaaa0ea72e89bb28a888fe4e01f732f9f5801479
SHA1(Wireshark-win64-3.2.7.msi)=5faac479c2fae5e59b2607ba9b86bad61e2f63da
Wireshark-win32-3.2.7.msi: 43147264 bytes
SHA256(Wireshark-win32-3.2.7.msi)=dff48de86ed11197bc5b8f033f11cd650d94ea2d458dda23429ad804be922ca3
RIPEMD160(Wireshark-win32-3.2.7.msi)=9749531a662f670dc4d6e87af1558c18186e1106
SHA1(Wireshark-win32-3.2.7.msi)=2f8512a4e1d252cb134362148c1ab46e43f152a5
WiresharkPortable_3.2.7.paf.exe: 36699080 bytes
SHA256(WiresharkPortable_3.2.7.paf.exe)=2eb3ded78c1c800e088359828e221fc65d004559dd0ec00fdaecefbf7600a523
RIPEMD160(WiresharkPortable_3.2.7.paf.exe)=5cfb43dfe5fdd831587bb0ac96e0c153a155c8a6
SHA1(WiresharkPortable_3.2.7.paf.exe)=5a34d03c9fbd3e497c2f6cf25402003881ce6934
Wireshark 3.2.7 Intel 64.dmg: 97732672 bytes
SHA256(Wireshark 3.2.7 Intel 64.dmg)=1347138534c6d9adb2ee1af7898cac2248b63bfb1ac6afee54e17725ab333106
RIPEMD160(Wireshark 3.2.7 Intel 64.dmg)=173acd594c6ac6e58c898a813f4f0749108799ad
SHA1(Wireshark 3.2.7 Intel 64.dmg)=08100d6f479b20075d03f89dbec4b1364264a625
You can validate these hashes using the following commands (among others):
Windows: certutil -hashfile Wireshark-win64-x.y.z.exe SHA256
Linux (GNU Coreutils): sha256sum wireshark-x.y.z.tar.xz
macOS: shasum -a 256 "Wireshark x.y.z Intel 64.dmg"
Other: openssl sha256 wireshark-x.y.z.tar.xz
-----BEGIN PGP SIGNATURE-----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=4Ouo
-----END PGP SIGNATURE-----

View File

@ -1,3 +1,13 @@
-------------------------------------------------------------------
Thu Sep 24 07:56:52 UTC 2020 - Robert Frohl <rfrohl@suse.com>
- wireshark 3.2.7:
* CVE-2020-25863: MIME Multipart dissector crash (boo#1176908)
* CVE-2020-25862: TCP dissector crash (boo#1176909)
* CVE-2020-25866: BLIP dissector crash (boo#1176910)
- Further features, bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-3.2.7.html
------------------------------------------------------------------- -------------------------------------------------------------------
Wed Aug 12 20:46:35 UTC 2020 - Andreas Stieger <andreas.stieger@gmx.de> Wed Aug 12 20:46:35 UTC 2020 - Andreas Stieger <andreas.stieger@gmx.de>

View File

@ -27,7 +27,7 @@
%bcond_with lz4 %bcond_with lz4
%endif %endif
Name: wireshark Name: wireshark
Version: 3.2.6 Version: 3.2.7
Release: 0 Release: 0
Summary: A Network Traffic Analyser Summary: A Network Traffic Analyser
License: GPL-2.0-or-later AND GPL-3.0-or-later License: GPL-2.0-or-later AND GPL-3.0-or-later