Bug#709167: marked as done (wireshark: Security vulnerabilities fixed in 1.8.7 (CVE-2013-3555 to CVE-2013-3562))

Debian Bug Tracking System Thu, 20 Jun 2013 16:05:14 -0700

Your message dated Thu, 20 Jun 2013 22:17:12 +0000
with message-id <[email protected]>
and subject line Bug#709167: fixed in wireshark 1.8.2-5wheezy3
has caused the Debian Bug report #709167,
regarding wireshark: Security vulnerabilities fixed in 1.8.7 (CVE-2013-3555 to 
CVE-2013-3562)
to be marked as done.


This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
709167: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=709167
Debian Bug Tracking System
Contact [email protected] with problems

--- Begin Message ---

Package: wireshark
Version: 1.8.6-3
Severity: important
Tags: security

Please check and fix security vulnerabilities in wireshark. Contact me if you 
need assistance. CVEs assigned in here: 
http://www.openwall.com/lists/oss-security/2013/05/20/7

---
Henri Salo

signature.asc
Description: Digital signature

--- End Message ---

--- Begin Message ---

Source: wireshark
Source-Version: 1.8.2-5wheezy3

We believe that the bug you reported is fixed in the latest version of
wireshark, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Balint Reczey <[email protected]> (supplier of updated wireshark package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Tue, 28 May 2013 19:39:33 -0500
Source: wireshark
Binary: wireshark-common wireshark tshark wireshark-dev wireshark-dbg 
wireshark-doc libwireshark2 libwsutil2 libwsutil-dev libwireshark-data 
libwireshark-dev libwiretap2 libwiretap-dev
Architecture: source all amd64
Version: 1.8.2-5wheezy3
Distribution: wheezy-security
Urgency: high
Maintainer: Balint Reczey <[email protected]>
Changed-By: Balint Reczey <[email protected]>
Description: 
 libwireshark-data - network packet dissection library -- data files
 libwireshark-dev - network packet dissection library -- development files
 libwireshark2 - network packet dissection library -- shared library
 libwiretap-dev - network packet capture library -- development files
 libwiretap2 - network packet capture library -- shared library
 libwsutil-dev - network packet dissection utilities library -- shared library
 libwsutil2 - network packet dissection utilities library -- shared library
 tshark     - network traffic analyzer - console version
 wireshark  - network traffic analyzer - GTK+ version
 wireshark-common - network traffic analyzer - common files
 wireshark-dbg - network traffic analyzer - debug symbols
 wireshark-dev - network traffic analyzer - development tools
 wireshark-doc - network traffic analyzer - documentation
Closes: 709167
Changes: 
 wireshark (1.8.2-5wheezy3) wheezy-security; urgency=high
 .
   * security fixes from Wireshark 1.8.7 (Closes: #709167):
     - The GTPv2 dissector could crash (CVE-2013-3555)
     - The ASN.1 BER dissector could crash (CVE-2013-3557)
     - The PPP CCP dissector could crash (CVE-2013-3558)
     - The DCP ETSI dissector could crash. Discovered by Evan Jensen.
       (CVE-2013-3559)
     - The MPEG DSM-CC dissector could crash. (CVE-2013-3560)
     - The Websocket dissector could crash. Discovered by Moshe Kaplan.
       (CVE-2013-3562)
Checksums-Sha1: 
 62d28df49f9397373b09cbb1e2e250c8ccde571a 2964 wireshark_1.8.2-5wheezy3.dsc
 e1ed199639dfdb30d94ab653bc1df57dd058c1d8 91304 
wireshark_1.8.2-5wheezy3.debian.tar.gz
 4faa0db9631778f501b0f39fbe58ad0b418f6ade 3849790 
wireshark-doc_1.8.2-5wheezy3_all.deb
 43a5516990488bffc7ddc462ddfea40a3eaefb1a 1222980 
libwireshark-data_1.8.2-5wheezy3_all.deb
 2b6cbb742af17a993a8adf2d2561f2dd834c2ecb 227768 
wireshark-common_1.8.2-5wheezy3_amd64.deb
 ced5736ddf431ae5f643110887a92d102a781742 981034 
wireshark_1.8.2-5wheezy3_amd64.deb
 a064aab2ada947c5b29e21baf6ee85c1ce35de54 177608 tshark_1.8.2-5wheezy3_amd64.deb
 d1dc957db39d38bedf3ed82ca0b23fc28d390bb4 176266 
wireshark-dev_1.8.2-5wheezy3_amd64.deb
 02872846366146d92e2cb2b755da2b655058e4e3 28292656 
wireshark-dbg_1.8.2-5wheezy3_amd64.deb
 85f48c74c64355ad7ebca1580462353c24eb5979 13438298 
libwireshark2_1.8.2-5wheezy3_amd64.deb
 deebde0d136f7806bf5792b809edfe296b5558f2 50146 
libwsutil2_1.8.2-5wheezy3_amd64.deb
 0b6533a5464d3ba6a789a8ba62b75d8592d4d249 49314 
libwsutil-dev_1.8.2-5wheezy3_amd64.deb
 55e6bb937bfbfec3ad244fac7552c48850aeeeef 885578 
libwireshark-dev_1.8.2-5wheezy3_amd64.deb
 b1b0f092857199dfa34a958dce810eb49708a4ee 190368 
libwiretap2_1.8.2-5wheezy3_amd64.deb
 068c1b4ead51e51db03859d6a61416f8a517c13a 69912 
libwiretap-dev_1.8.2-5wheezy3_amd64.deb
Checksums-Sha256: 
 ad95d99b7e11449349a91746f9bdac32c09d9b97b4dc82ecd52f5ac715ad2179 2964 
wireshark_1.8.2-5wheezy3.dsc
 bd55720daa66252d1c7df6b46e85755feb61eb862624c7777cde258115f15a58 91304 
wireshark_1.8.2-5wheezy3.debian.tar.gz
 5c9f265b7ede697d910079f9c73b52315795fa0d6785be24dc6929839c5c5438 3849790 
wireshark-doc_1.8.2-5wheezy3_all.deb
 ad753cc4a319a451d9d2b7ade6934873dacc41b9867010f1104ec4bf82b5fd37 1222980 
libwireshark-data_1.8.2-5wheezy3_all.deb
 7fb1c820118af6356ea770d548419a6c44f5df55b49d7929da357ca3932807d6 227768 
wireshark-common_1.8.2-5wheezy3_amd64.deb
 11321bd70fe5f6c60f67412f2783264f56d9b2f9876bae61ba7168538eb4bac6 981034 
wireshark_1.8.2-5wheezy3_amd64.deb
 66bfee62c66fcb4a2e8381e950fbb69ffb8c2aee6c7c08842cbca723e3c41e48 177608 
tshark_1.8.2-5wheezy3_amd64.deb
 59daa52ea0959f47aceec295cbcec267502e531af4dfe04a2a357b8a0e4474fb 176266 
wireshark-dev_1.8.2-5wheezy3_amd64.deb
 a00ef81721c5497fa489fe1dca284386678d3308966a53ca5403069ea82d07c9 28292656 
wireshark-dbg_1.8.2-5wheezy3_amd64.deb
 96a615377e2bb65804dac1439d56b8f49ff1e87cd6ae043f9d0ef9329f113c27 13438298 
libwireshark2_1.8.2-5wheezy3_amd64.deb
 9cce47ca1a70cd0a091fe398971d7fa9ee6c8baa5cbb636c59dcbca466433e19 50146 
libwsutil2_1.8.2-5wheezy3_amd64.deb
 4a1ed687377b114c7f59b77981401e4882474368eb2ad6470a75d3fd0063cf82 49314 
libwsutil-dev_1.8.2-5wheezy3_amd64.deb
 ae997cd9cc20ababe02340170c3ad5cb96b45ffaedd82b7197e4a5f5eec91d2d 885578 
libwireshark-dev_1.8.2-5wheezy3_amd64.deb
 3cabcf149b40c40537c652c22038c7c6995b5788b3eb9fd679fcb981a56dd288 190368 
libwiretap2_1.8.2-5wheezy3_amd64.deb
 254ee428fe0eae50aa27ef2e8ba14fcc1e748251f0aeb747633f39d360155fbd 69912 
libwiretap-dev_1.8.2-5wheezy3_amd64.deb
Files: 
 8d09b9d24f029c6dcb40e9cd8c30cd8f 2964 net optional wireshark_1.8.2-5wheezy3.dsc
 f1046b018e6c213e10498b8ce466a7e1 91304 net optional 
wireshark_1.8.2-5wheezy3.debian.tar.gz
 81733d9fa2a264f154d43818a466864b 3849790 doc extra 
wireshark-doc_1.8.2-5wheezy3_all.deb
 a59f3743e5fd7d261b52cabb4cfed432 1222980 libs optional 
libwireshark-data_1.8.2-5wheezy3_all.deb
 d787fb7711e269f3f8f74e36c39d70e9 227768 net optional 
wireshark-common_1.8.2-5wheezy3_amd64.deb
 f4eef2bb60f39a505464913df6cdb92d 981034 net optional 
wireshark_1.8.2-5wheezy3_amd64.deb
 6dbfab788102fa9ac014089cea75cb38 177608 net optional 
tshark_1.8.2-5wheezy3_amd64.deb
 2a4e2b7e02c59f597e0956acf2687924 176266 devel optional 
wireshark-dev_1.8.2-5wheezy3_amd64.deb
 559d15377c80371c1a78314e1d7841ce 28292656 debug extra 
wireshark-dbg_1.8.2-5wheezy3_amd64.deb
 e98040ad36fd026e902ff3260cbefa73 13438298 libs optional 
libwireshark2_1.8.2-5wheezy3_amd64.deb
 d25b6bb98e7ac5f566a04ee1decfabe8 50146 libs optional 
libwsutil2_1.8.2-5wheezy3_amd64.deb
 9007084f86316ca28bd619bfd7657511 49314 libdevel optional 
libwsutil-dev_1.8.2-5wheezy3_amd64.deb
 3ee58414e11711e55c746781fe10c7a8 885578 libdevel optional 
libwireshark-dev_1.8.2-5wheezy3_amd64.deb
 6255cdcdaaebbf40eb6a376ccf4b12ff 190368 libs optional 
libwiretap2_1.8.2-5wheezy3_amd64.deb
 b5f3898f4cfea9ded168561c4f3ca45a 69912 libdevel optional 
libwiretap-dev_1.8.2-5wheezy3_amd64.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=P2/J
-----END PGP SIGNATURE-----

--- End Message ---

Bug#709167: marked as done (wireshark: Security vulnerabilities fixed in 1.8.7 (CVE-2013-3555 to CVE-2013-3562))

Reply via email to