Hello community, here is the log from the commit of package wireshark for openSUSE:Factory checked in at 2020-11-02 14:05:02 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/wireshark (Old) and /work/SRC/openSUSE:Factory/.wireshark.new.3463 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "wireshark" Mon Nov 2 14:05:02 2020 rev:163 rq:845395 version:3.2.8 Changes: -------- --- /work/SRC/openSUSE:Factory/wireshark/wireshark.changes 2020-09-29 18:59:52.485632916 +0200 +++ /work/SRC/openSUSE:Factory/.wireshark.new.3463/wireshark.changes 2020-11-02 14:06:24.568773696 +0100 @@ -1,0 +2,10 @@ +Fri Oct 30 08:06:41 UTC 2020 - Robert Frohl <rfr...@suse.com> + +- wireshark 3.2.8: + * CVE-2020-26575: FBZERO dissector crash (boo#1177406) + * CVE-2020-28030: GQUIC dissector crash (boo#1178291) + * Infinite memory allocation while parsing this tcp packet +- Further features, bug fixes and updated protocol support as listed in: + https://www.wireshark.org/docs/relnotes/wireshark-3.2.8.html + +------------------------------------------------------------------- Old: ---- wireshark-3.2.7.tar.xz wireshark-3.2.7.tar.xz.asc New: ---- wireshark-3.2.8.tar.xz wireshark-3.2.8.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ wireshark.spec ++++++ --- /var/tmp/diff_new_pack.hD0ESR/_old 2020-11-02 14:06:25.424774349 +0100 +++ /var/tmp/diff_new_pack.hD0ESR/_new 2020-11-02 14:06:25.432774355 +0100 @@ -17,17 +17,17 @@ # define libraries +%define libcodecs libwscodecs2 +%define libtap libwiretap10 %define libutil libwsutil11 %define libwire libwireshark13 -%define libtap libwiretap10 -%define libcodecs libwscodecs2 %if 0%{?suse_version} >= 1500 %bcond_without lz4 %else %bcond_with lz4 %endif Name: wireshark -Version: 3.2.7 +Version: 3.2.8 Release: 0 Summary: A Network Traffic Analyser License: GPL-2.0-or-later AND GPL-3.0-or-later ++++++ wireshark-3.2.7.tar.xz -> wireshark-3.2.8.tar.xz ++++++ /work/SRC/openSUSE:Factory/wireshark/wireshark-3.2.7.tar.xz /work/SRC/openSUSE:Factory/.wireshark.new.3463/wireshark-3.2.8.tar.xz differ: char 15, line 1 ++++++ wireshark-3.2.7.tar.xz.asc -> wireshark-3.2.8.tar.xz.asc ++++++ --- /work/SRC/openSUSE:Factory/wireshark/wireshark-3.2.7.tar.xz.asc 2020-09-29 18:59:52.325632722 +0200 +++ /work/SRC/openSUSE:Factory/.wireshark.new.3463/wireshark-3.2.8.tar.xz.asc 2020-11-02 14:06:24.532773668 +0100 @@ -1,40 +1,40 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 -wireshark-3.2.7.tar.xz: 31659996 bytes -SHA256(wireshark-3.2.7.tar.xz)=be832fb86d9c455c5be8b225a755cdc77cb0e92356bdfc1fe4b000d93f7d70da -RIPEMD160(wireshark-3.2.7.tar.xz)=81787ab8814cba0452da9cb45fcfd988da5ec587 -SHA1(wireshark-3.2.7.tar.xz)=b564c2e729066cb7c952463fef6163e23a5fea1e - -Wireshark-win64-3.2.7.exe: 60139752 bytes -SHA256(Wireshark-win64-3.2.7.exe)=d418b047d8f77d6ae804a5121d18d941bc45ca47c30f553d0034d6136c3069a4 -RIPEMD160(Wireshark-win64-3.2.7.exe)=9d13f6ff774c53b8132e699632981fcb4a62cfb9 -SHA1(Wireshark-win64-3.2.7.exe)=fb729e381b42583358fdc7459d1558c6ee640925 - -Wireshark-win32-3.2.7.exe: 54971224 bytes -SHA256(Wireshark-win32-3.2.7.exe)=5b41010a28857bf842ddd671d13896ff7a186144e792e674ac0b5d87b50e3934 -RIPEMD160(Wireshark-win32-3.2.7.exe)=badf7e3b4039bdb55e1f93c4bd4d2ec9163976d4 -SHA1(Wireshark-win32-3.2.7.exe)=523aba9b39c50e2d491912778beb604209bc7053 - -Wireshark-win64-3.2.7.msi: 48414720 bytes -SHA256(Wireshark-win64-3.2.7.msi)=bbf11f1b14f862ce05880529766310a46d9f9edfc614beec00b6f6ac9e0c6855 -RIPEMD160(Wireshark-win64-3.2.7.msi)=eaaa0ea72e89bb28a888fe4e01f732f9f5801479 -SHA1(Wireshark-win64-3.2.7.msi)=5faac479c2fae5e59b2607ba9b86bad61e2f63da - -Wireshark-win32-3.2.7.msi: 43147264 bytes -SHA256(Wireshark-win32-3.2.7.msi)=dff48de86ed11197bc5b8f033f11cd650d94ea2d458dda23429ad804be922ca3 -RIPEMD160(Wireshark-win32-3.2.7.msi)=9749531a662f670dc4d6e87af1558c18186e1106 -SHA1(Wireshark-win32-3.2.7.msi)=2f8512a4e1d252cb134362148c1ab46e43f152a5 - -WiresharkPortable_3.2.7.paf.exe: 36699080 bytes -SHA256(WiresharkPortable_3.2.7.paf.exe)=2eb3ded78c1c800e088359828e221fc65d004559dd0ec00fdaecefbf7600a523 -RIPEMD160(WiresharkPortable_3.2.7.paf.exe)=5cfb43dfe5fdd831587bb0ac96e0c153a155c8a6 -SHA1(WiresharkPortable_3.2.7.paf.exe)=5a34d03c9fbd3e497c2f6cf25402003881ce6934 - -Wireshark 3.2.7 Intel 64.dmg: 97732672 bytes -SHA256(Wireshark 3.2.7 Intel 64.dmg)=1347138534c6d9adb2ee1af7898cac2248b63bfb1ac6afee54e17725ab333106 -RIPEMD160(Wireshark 3.2.7 Intel 64.dmg)=173acd594c6ac6e58c898a813f4f0749108799ad -SHA1(Wireshark 3.2.7 Intel 64.dmg)=08100d6f479b20075d03f89dbec4b1364264a625 +wireshark-3.2.8.tar.xz: 31660652 bytes +SHA256(wireshark-3.2.8.tar.xz)=a8a595d08f38c6bd083886f6c199b9d4fb007e363031b263667c7da72323cc32 +RIPEMD160(wireshark-3.2.8.tar.xz)=150975c46582778575c704cd1f668f0fc341aed2 +SHA1(wireshark-3.2.8.tar.xz)=5fdcbbe3a50cea38a8fa5f10b21f58cbef31793e + +Wireshark-win32-3.2.8.exe: 54824688 bytes +SHA256(Wireshark-win32-3.2.8.exe)=61ff02ae14156f84df8cf6d552bb645ff5d2e39d67122422e6ef881673abe609 +RIPEMD160(Wireshark-win32-3.2.8.exe)=22ebb1a2eabc0469205241a07db5b3923a2a9c58 +SHA1(Wireshark-win32-3.2.8.exe)=00877975c631ddf726b94f6f233e629d2b9a4d00 + +Wireshark-win64-3.2.8.exe: 59974624 bytes +SHA256(Wireshark-win64-3.2.8.exe)=47e6488975dee3351a956f7201b73ff87cd290d4f04c65bdcf3baeaeba59aa2d +RIPEMD160(Wireshark-win64-3.2.8.exe)=b2808fd28b0368812467fa401e845f181e957d62 +SHA1(Wireshark-win64-3.2.8.exe)=0c44bd5dcfb8fbbfe9f25558b9d199ee5b13a0c4 + +Wireshark-win64-3.2.8.msi: 48353280 bytes +SHA256(Wireshark-win64-3.2.8.msi)=dc50e707ffc599a747ddc1976e28780ec58286220c2c7be81d8042682e370e43 +RIPEMD160(Wireshark-win64-3.2.8.msi)=bb4d5f0400775e988d15db338332d06599f6459e +SHA1(Wireshark-win64-3.2.8.msi)=99edaaafd861965148f2364264c9d31135c24e83 + +Wireshark-win32-3.2.8.msi: 43098112 bytes +SHA256(Wireshark-win32-3.2.8.msi)=3e0b9c2520146850aff8608cfcf3427e3fd78228166c30ca9eed17cf50787ce9 +RIPEMD160(Wireshark-win32-3.2.8.msi)=b6b402422b1670ce2e7ffdf3815da9f50466bf2d +SHA1(Wireshark-win32-3.2.8.msi)=6d7ae537cd59b090d2147f9bccd566bae4045f0f + +WiresharkPortable_3.2.8.paf.exe: 36697496 bytes +SHA256(WiresharkPortable_3.2.8.paf.exe)=21faab30e125340ed8545d21980a614ca7c5f92a7bcbeaa6706107277d12771e +RIPEMD160(WiresharkPortable_3.2.8.paf.exe)=7bbc0b765789192908345170b8ded9321d7b2b94 +SHA1(WiresharkPortable_3.2.8.paf.exe)=c0cd6b6e4e680dc7f4da5727b7158f75e4cfe851 + +Wireshark 3.2.8 Intel 64.dmg: 97737979 bytes +SHA256(Wireshark 3.2.8 Intel 64.dmg)=41e347c4c1f3a92214437d49ef0ac03ad06e176a30c232a488a997157424bf4b +RIPEMD160(Wireshark 3.2.8 Intel 64.dmg)=99b17dda5c0340dfe89c2f36bcbed4b81a60c8f8 +SHA1(Wireshark 3.2.8 Intel 64.dmg)=88f8129a3efaf788a5a63d8ac304e9d3a1980671 You can validate these hashes using the following commands (among others): @@ -44,17 +44,17 @@ Other: openssl sha256 wireshark-x.y.z.tar.xz -----BEGIN PGP SIGNATURE----- -iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAl9r4ZgACgkQgiRKeOb+ -rurdow//e7Bqok/Y11bMPojbIRzAZYra7cZLEA/3BzQ8Lk46xud//hOgmETJKTr4 -DePaxblyvoGgvzXAOGZs+IQPbnTGixj8WQGlv7TD/OshKVlxGUbWtPM9W/5q79sD -FNHt4Td2KSfEPdnnVJDB25QEfhFRjHz4qXJEgvPMbzuEkyhpgnPVC6h1TY84Znn2 -q8z5ZqjEfEpBjfsTORX28FMmmPin2LxXV9iHwyapyJ7jqBzOmTEXTsHlmkl8ZwQy -pZlGJ0IGTnbB/hTzozGHrE5Zm2pB++VZ1eMH4xHRXDPGIqbDMYvFKz3MhqGb8kkV -pdqCscFgvNu4Co69dPkrNUXeYCZB2wHsyq521VzpRFWOoTYCH4bzy++BKILEvsN3 -pDuw9OLSrHpvjczL7s00V7wyzZTv5VE9azaIr8zNHQ5UtDoWIHqnpNKdppRSjp/V -PByFux8p5V03tg4yXRZAGK0EqXoJVc/SHg0hjVHAe+adLhRzB72fSZoNt9ztxk5P -/PCaa4DnSJOeX2g5Klns7F+eDoR2oDMprgWCy5iy4pLXtz0CkussHjZ8zslYWUHH -Wu/LnuWgHKJa8uhznj4qMlfX+54wk324n0tIepEO+iW35HH5lCVC2Eyc5A8qq1nM -ksRsG6uyowbQX1bYyid3AgRsTbFnSGO4a1vIhexkMd3+xWqGb7g= -=4Ouo +iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAl+bJ7gACgkQgiRKeOb+ +ruoltRAA3g90sCvoYryTufKunrZ2b1o1JVYRU+PpmMQlDiZ/bzpb0RHwjbpygpsh +Hk4UCqjnLWafOVYgsuB21ZOv+DIZBCCcNdsXlPUcQZwo7OHY0D+MpIB0k468JDC3 +UsjJUyixJA2ZNn/y07lvpVOuE1lIjKH7MorbTaHro7DK/SoZN0mewXVVILjt+KPE +lSpIb6t7EcKfXpoLG8ZCuAXjzY94i27NFv6BIH9beOGZGDNxS5OnYFUrk9rhq5I3 +7jIOwN4o+LOr/PEFwj6/SH3bJXOm5OvbFqI8U26VPu/eTqPC4rUh4O4N1esmvJOi +bRYS++B26b8b45qiM0v0HqrlvCL//ZTQVVm7nKUiCuWM0fnHxGiSmVsndIOp+IJc +qlwb2R1XnREZJGWwnVRX1uIOd9U7DVlgz190Pc62Yo0iMZIyDNNy8iqmE/cp3m/q +ExROUsxsGtdvsaag+8nuSxOGRIF+cQ/QYvXNrkocXLNPdeUkgtYnYq93BUflxWZT +SjBFo3k4Ukm+DgU1zpd3qInZ4815Fip2OuGIyvTYqg43juOrfMas8mY+ntZO0iJF +V+CqhW2BmQpOzAQ8pbapDngmN/DLc0UvKXDMtT6tvOc7/tHDQGXLk20TFdpyQVgd +o0NxqY1WasjBqSqOafYJRLLGffMmi0h9ybWzmxoXcdIMJ9BmXt4= +=tBhk -----END PGP SIGNATURE-----
