From 0cd3da50fe9663afb822f4b98a230fb310ebfdbb049d4239974d83689caba938 Mon Sep 17 00:00:00 2001 From: Robert Frohl Date: Fri, 30 Oct 2020 10:34:10 +0000 Subject: [PATCH 1/2] Accepting request 845003 from home:rfrohl:branches:network:utilities update wireshark to 3.2.8 OBS-URL: https://build.opensuse.org/request/show/845003 OBS-URL: https://build.opensuse.org/package/show/network:utilities/wireshark?expand=0&rev=319 --- wireshark-3.2.7.tar.xz | 3 -- wireshark-3.2.7.tar.xz.asc | 60 -------------------------------------- wireshark-3.2.8.tar.xz | 3 ++ wireshark-3.2.8.tar.xz.asc | 60 ++++++++++++++++++++++++++++++++++++++ wireshark.changes | 10 +++++++ wireshark.spec | 6 ++-- 6 files changed, 76 insertions(+), 66 deletions(-) delete mode 100644 wireshark-3.2.7.tar.xz delete mode 100644 wireshark-3.2.7.tar.xz.asc create mode 100644 wireshark-3.2.8.tar.xz create mode 100644 wireshark-3.2.8.tar.xz.asc diff --git a/wireshark-3.2.7.tar.xz b/wireshark-3.2.7.tar.xz deleted file mode 100644 index 10b0b84..0000000 --- a/wireshark-3.2.7.tar.xz +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:be832fb86d9c455c5be8b225a755cdc77cb0e92356bdfc1fe4b000d93f7d70da -size 31659996 diff --git a/wireshark-3.2.7.tar.xz.asc b/wireshark-3.2.7.tar.xz.asc deleted file mode 100644 index ae86e6b..0000000 --- a/wireshark-3.2.7.tar.xz.asc +++ /dev/null @@ -1,60 +0,0 @@ ------BEGIN PGP SIGNED MESSAGE----- -Hash: SHA512 - -wireshark-3.2.7.tar.xz: 31659996 bytes -SHA256(wireshark-3.2.7.tar.xz)=be832fb86d9c455c5be8b225a755cdc77cb0e92356bdfc1fe4b000d93f7d70da -RIPEMD160(wireshark-3.2.7.tar.xz)=81787ab8814cba0452da9cb45fcfd988da5ec587 -SHA1(wireshark-3.2.7.tar.xz)=b564c2e729066cb7c952463fef6163e23a5fea1e - -Wireshark-win64-3.2.7.exe: 60139752 bytes -SHA256(Wireshark-win64-3.2.7.exe)=d418b047d8f77d6ae804a5121d18d941bc45ca47c30f553d0034d6136c3069a4 -RIPEMD160(Wireshark-win64-3.2.7.exe)=9d13f6ff774c53b8132e699632981fcb4a62cfb9 -SHA1(Wireshark-win64-3.2.7.exe)=fb729e381b42583358fdc7459d1558c6ee640925 - -Wireshark-win32-3.2.7.exe: 54971224 bytes -SHA256(Wireshark-win32-3.2.7.exe)=5b41010a28857bf842ddd671d13896ff7a186144e792e674ac0b5d87b50e3934 -RIPEMD160(Wireshark-win32-3.2.7.exe)=badf7e3b4039bdb55e1f93c4bd4d2ec9163976d4 -SHA1(Wireshark-win32-3.2.7.exe)=523aba9b39c50e2d491912778beb604209bc7053 - -Wireshark-win64-3.2.7.msi: 48414720 bytes -SHA256(Wireshark-win64-3.2.7.msi)=bbf11f1b14f862ce05880529766310a46d9f9edfc614beec00b6f6ac9e0c6855 -RIPEMD160(Wireshark-win64-3.2.7.msi)=eaaa0ea72e89bb28a888fe4e01f732f9f5801479 -SHA1(Wireshark-win64-3.2.7.msi)=5faac479c2fae5e59b2607ba9b86bad61e2f63da - -Wireshark-win32-3.2.7.msi: 43147264 bytes -SHA256(Wireshark-win32-3.2.7.msi)=dff48de86ed11197bc5b8f033f11cd650d94ea2d458dda23429ad804be922ca3 -RIPEMD160(Wireshark-win32-3.2.7.msi)=9749531a662f670dc4d6e87af1558c18186e1106 -SHA1(Wireshark-win32-3.2.7.msi)=2f8512a4e1d252cb134362148c1ab46e43f152a5 - -WiresharkPortable_3.2.7.paf.exe: 36699080 bytes -SHA256(WiresharkPortable_3.2.7.paf.exe)=2eb3ded78c1c800e088359828e221fc65d004559dd0ec00fdaecefbf7600a523 -RIPEMD160(WiresharkPortable_3.2.7.paf.exe)=5cfb43dfe5fdd831587bb0ac96e0c153a155c8a6 -SHA1(WiresharkPortable_3.2.7.paf.exe)=5a34d03c9fbd3e497c2f6cf25402003881ce6934 - -Wireshark 3.2.7 Intel 64.dmg: 97732672 bytes -SHA256(Wireshark 3.2.7 Intel 64.dmg)=1347138534c6d9adb2ee1af7898cac2248b63bfb1ac6afee54e17725ab333106 -RIPEMD160(Wireshark 3.2.7 Intel 64.dmg)=173acd594c6ac6e58c898a813f4f0749108799ad -SHA1(Wireshark 3.2.7 Intel 64.dmg)=08100d6f479b20075d03f89dbec4b1364264a625 - -You can validate these hashes using the following commands (among others): - - Windows: certutil -hashfile Wireshark-win64-x.y.z.exe SHA256 - Linux (GNU Coreutils): sha256sum wireshark-x.y.z.tar.xz - macOS: shasum -a 256 "Wireshark x.y.z Intel 64.dmg" - Other: openssl sha256 wireshark-x.y.z.tar.xz ------BEGIN PGP SIGNATURE----- - -iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAl9r4ZgACgkQgiRKeOb+ -rurdow//e7Bqok/Y11bMPojbIRzAZYra7cZLEA/3BzQ8Lk46xud//hOgmETJKTr4 -DePaxblyvoGgvzXAOGZs+IQPbnTGixj8WQGlv7TD/OshKVlxGUbWtPM9W/5q79sD -FNHt4Td2KSfEPdnnVJDB25QEfhFRjHz4qXJEgvPMbzuEkyhpgnPVC6h1TY84Znn2 -q8z5ZqjEfEpBjfsTORX28FMmmPin2LxXV9iHwyapyJ7jqBzOmTEXTsHlmkl8ZwQy -pZlGJ0IGTnbB/hTzozGHrE5Zm2pB++VZ1eMH4xHRXDPGIqbDMYvFKz3MhqGb8kkV -pdqCscFgvNu4Co69dPkrNUXeYCZB2wHsyq521VzpRFWOoTYCH4bzy++BKILEvsN3 -pDuw9OLSrHpvjczL7s00V7wyzZTv5VE9azaIr8zNHQ5UtDoWIHqnpNKdppRSjp/V -PByFux8p5V03tg4yXRZAGK0EqXoJVc/SHg0hjVHAe+adLhRzB72fSZoNt9ztxk5P -/PCaa4DnSJOeX2g5Klns7F+eDoR2oDMprgWCy5iy4pLXtz0CkussHjZ8zslYWUHH -Wu/LnuWgHKJa8uhznj4qMlfX+54wk324n0tIepEO+iW35HH5lCVC2Eyc5A8qq1nM -ksRsG6uyowbQX1bYyid3AgRsTbFnSGO4a1vIhexkMd3+xWqGb7g= -=4Ouo ------END PGP SIGNATURE----- diff --git a/wireshark-3.2.8.tar.xz b/wireshark-3.2.8.tar.xz new file mode 100644 index 0000000..b82f094 --- /dev/null +++ b/wireshark-3.2.8.tar.xz @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:a8a595d08f38c6bd083886f6c199b9d4fb007e363031b263667c7da72323cc32 +size 31660652 diff --git a/wireshark-3.2.8.tar.xz.asc b/wireshark-3.2.8.tar.xz.asc new file mode 100644 index 0000000..e580085 --- /dev/null +++ b/wireshark-3.2.8.tar.xz.asc @@ -0,0 +1,60 @@ +-----BEGIN PGP SIGNED MESSAGE----- +Hash: SHA512 + +wireshark-3.2.8.tar.xz: 31660652 bytes +SHA256(wireshark-3.2.8.tar.xz)=a8a595d08f38c6bd083886f6c199b9d4fb007e363031b263667c7da72323cc32 +RIPEMD160(wireshark-3.2.8.tar.xz)=150975c46582778575c704cd1f668f0fc341aed2 +SHA1(wireshark-3.2.8.tar.xz)=5fdcbbe3a50cea38a8fa5f10b21f58cbef31793e + +Wireshark-win32-3.2.8.exe: 54824688 bytes +SHA256(Wireshark-win32-3.2.8.exe)=61ff02ae14156f84df8cf6d552bb645ff5d2e39d67122422e6ef881673abe609 +RIPEMD160(Wireshark-win32-3.2.8.exe)=22ebb1a2eabc0469205241a07db5b3923a2a9c58 +SHA1(Wireshark-win32-3.2.8.exe)=00877975c631ddf726b94f6f233e629d2b9a4d00 + +Wireshark-win64-3.2.8.exe: 59974624 bytes +SHA256(Wireshark-win64-3.2.8.exe)=47e6488975dee3351a956f7201b73ff87cd290d4f04c65bdcf3baeaeba59aa2d +RIPEMD160(Wireshark-win64-3.2.8.exe)=b2808fd28b0368812467fa401e845f181e957d62 +SHA1(Wireshark-win64-3.2.8.exe)=0c44bd5dcfb8fbbfe9f25558b9d199ee5b13a0c4 + +Wireshark-win64-3.2.8.msi: 48353280 bytes +SHA256(Wireshark-win64-3.2.8.msi)=dc50e707ffc599a747ddc1976e28780ec58286220c2c7be81d8042682e370e43 +RIPEMD160(Wireshark-win64-3.2.8.msi)=bb4d5f0400775e988d15db338332d06599f6459e +SHA1(Wireshark-win64-3.2.8.msi)=99edaaafd861965148f2364264c9d31135c24e83 + +Wireshark-win32-3.2.8.msi: 43098112 bytes +SHA256(Wireshark-win32-3.2.8.msi)=3e0b9c2520146850aff8608cfcf3427e3fd78228166c30ca9eed17cf50787ce9 +RIPEMD160(Wireshark-win32-3.2.8.msi)=b6b402422b1670ce2e7ffdf3815da9f50466bf2d +SHA1(Wireshark-win32-3.2.8.msi)=6d7ae537cd59b090d2147f9bccd566bae4045f0f + +WiresharkPortable_3.2.8.paf.exe: 36697496 bytes +SHA256(WiresharkPortable_3.2.8.paf.exe)=21faab30e125340ed8545d21980a614ca7c5f92a7bcbeaa6706107277d12771e +RIPEMD160(WiresharkPortable_3.2.8.paf.exe)=7bbc0b765789192908345170b8ded9321d7b2b94 +SHA1(WiresharkPortable_3.2.8.paf.exe)=c0cd6b6e4e680dc7f4da5727b7158f75e4cfe851 + +Wireshark 3.2.8 Intel 64.dmg: 97737979 bytes +SHA256(Wireshark 3.2.8 Intel 64.dmg)=41e347c4c1f3a92214437d49ef0ac03ad06e176a30c232a488a997157424bf4b +RIPEMD160(Wireshark 3.2.8 Intel 64.dmg)=99b17dda5c0340dfe89c2f36bcbed4b81a60c8f8 +SHA1(Wireshark 3.2.8 Intel 64.dmg)=88f8129a3efaf788a5a63d8ac304e9d3a1980671 + +You can validate these hashes using the following commands (among others): + + Windows: certutil -hashfile Wireshark-win64-x.y.z.exe SHA256 + Linux (GNU Coreutils): sha256sum wireshark-x.y.z.tar.xz + macOS: shasum -a 256 "Wireshark x.y.z Intel 64.dmg" + Other: openssl sha256 wireshark-x.y.z.tar.xz +-----BEGIN PGP SIGNATURE----- + +iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAl+bJ7gACgkQgiRKeOb+ +ruoltRAA3g90sCvoYryTufKunrZ2b1o1JVYRU+PpmMQlDiZ/bzpb0RHwjbpygpsh +Hk4UCqjnLWafOVYgsuB21ZOv+DIZBCCcNdsXlPUcQZwo7OHY0D+MpIB0k468JDC3 +UsjJUyixJA2ZNn/y07lvpVOuE1lIjKH7MorbTaHro7DK/SoZN0mewXVVILjt+KPE +lSpIb6t7EcKfXpoLG8ZCuAXjzY94i27NFv6BIH9beOGZGDNxS5OnYFUrk9rhq5I3 +7jIOwN4o+LOr/PEFwj6/SH3bJXOm5OvbFqI8U26VPu/eTqPC4rUh4O4N1esmvJOi +bRYS++B26b8b45qiM0v0HqrlvCL//ZTQVVm7nKUiCuWM0fnHxGiSmVsndIOp+IJc +qlwb2R1XnREZJGWwnVRX1uIOd9U7DVlgz190Pc62Yo0iMZIyDNNy8iqmE/cp3m/q +ExROUsxsGtdvsaag+8nuSxOGRIF+cQ/QYvXNrkocXLNPdeUkgtYnYq93BUflxWZT +SjBFo3k4Ukm+DgU1zpd3qInZ4815Fip2OuGIyvTYqg43juOrfMas8mY+ntZO0iJF +V+CqhW2BmQpOzAQ8pbapDngmN/DLc0UvKXDMtT6tvOc7/tHDQGXLk20TFdpyQVgd +o0NxqY1WasjBqSqOafYJRLLGffMmi0h9ybWzmxoXcdIMJ9BmXt4= +=tBhk +-----END PGP SIGNATURE----- diff --git a/wireshark.changes b/wireshark.changes index ed39034..42d8390 100644 --- a/wireshark.changes +++ b/wireshark.changes @@ -1,3 +1,13 @@ +------------------------------------------------------------------- +Fri Oct 30 08:06:41 UTC 2020 - Robert Frohl + +- wireshark 3.2.8: + * CVE-2020-26575: FBZERO dissector crash (boo#1177406) + * GQUIC dissector crash + * Infinite memory allocation while parsing this tcp packet +- Further features, bug fixes and updated protocol support as listed in: + https://www.wireshark.org/docs/relnotes/wireshark-3.2.8.html + ------------------------------------------------------------------- Thu Sep 24 07:56:52 UTC 2020 - Robert Frohl diff --git a/wireshark.spec b/wireshark.spec index 8727c61..f6dcf33 100644 --- a/wireshark.spec +++ b/wireshark.spec @@ -17,17 +17,17 @@ # define libraries +%define libcodecs libwscodecs2 +%define libtap libwiretap10 %define libutil libwsutil11 %define libwire libwireshark13 -%define libtap libwiretap10 -%define libcodecs libwscodecs2 %if 0%{?suse_version} >= 1500 %bcond_without lz4 %else %bcond_with lz4 %endif Name: wireshark -Version: 3.2.7 +Version: 3.2.8 Release: 0 Summary: A Network Traffic Analyser License: GPL-2.0-or-later AND GPL-3.0-or-later From 7e81f6bc4180d00b91fe3c08cfaad4be6d4a4ecc06953116e0e49742557042f0 Mon Sep 17 00:00:00 2001 From: Robert Frohl Date: Mon, 2 Nov 2020 11:00:45 +0000 Subject: [PATCH 2/2] Accepting request 845376 from home:rfrohl:branches:network:utilities add missing CVE/bsc to changes OBS-URL: https://build.opensuse.org/request/show/845376 OBS-URL: https://build.opensuse.org/package/show/network:utilities/wireshark?expand=0&rev=320 --- wireshark.changes | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/wireshark.changes b/wireshark.changes index 42d8390..97f1c89 100644 --- a/wireshark.changes +++ b/wireshark.changes @@ -3,7 +3,7 @@ Fri Oct 30 08:06:41 UTC 2020 - Robert Frohl - wireshark 3.2.8: * CVE-2020-26575: FBZERO dissector crash (boo#1177406) - * GQUIC dissector crash + * CVE-2020-28030: GQUIC dissector crash (boo#1178291) * Infinite memory allocation while parsing this tcp packet - Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.8.html