Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package wireshark for openSUSE:Factory checked in at 2021-04-24 23:06:48 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/wireshark (Old) and /work/SRC/openSUSE:Factory/.wireshark.new.12324 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "wireshark" Sat Apr 24 23:06:48 2021 rev:173 rq:887485 version:3.4.5 Changes: -------- --- /work/SRC/openSUSE:Factory/wireshark/wireshark.changes 2021-04-12 12:39:09.401494272 +0200 +++ /work/SRC/openSUSE:Factory/.wireshark.new.12324/wireshark.changes 2021-04-24 23:06:59.315211153 +0200 @@ -1,0 +2,18 @@ +Thu Apr 22 07:18:30 UTC 2021 - Andreas Stieger <[email protected]> + +- Wireshark 3.4.5: + * CVE-2021-22207: MS-WSP dissector excessive memory consumption + (boo#1185128, wnpa-sec-2021-04) + * Fix TShark not printing GeoIP information + * FIx TShark error when piping to "head" + * Fix missing parts of ASCII representation in Packet Bytes pane + * Fix dissection of NDPE attribute of NAN packet + * Fix TECMP: reserved flag interpreted as part of timestamp + * Fix DNS IXFR/AXFR multiple response + * Fix File too large issue +- drop patches: + * cmake_3-20_compatibility_1.patch + * cmake_3-20_compatibility_2.patch + * wireshark-0008-move-glib.patch + +------------------------------------------------------------------- Old: ---- cmake_3-20_compatibility_1.patch cmake_3-20_compatibility_2.patch wireshark-0008-move-glib.patch wireshark-3.4.4.tar.xz wireshark-3.4.4.tar.xz.asc New: ---- wireshark-3.4.5.tar.xz wireshark-3.4.5.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ wireshark.spec ++++++ --- /var/tmp/diff_new_pack.tvH1ml/_old 2021-04-24 23:07:00.063212212 +0200 +++ /var/tmp/diff_new_pack.tvH1ml/_new 2021-04-24 23:07:00.067212217 +0200 @@ -27,7 +27,7 @@ %bcond_with lz4 %endif Name: wireshark -Version: 3.4.4 +Version: 3.4.5 Release: 0 Summary: A Network Traffic Analyser License: GPL-2.0-or-later AND GPL-3.0-or-later @@ -36,10 +36,6 @@ Source: https://www.wireshark.org/download/src/%{name}-%{version}.tar.xz Source2: https://www.wireshark.org/download/SIGNATURES-%{version}.txt#/%{name}-%{version}.tar.xz.asc Source3: https://www.wireshark.org/download/gerald_at_wireshark_dot_org.gpg#/wireshark.keyring -Patch1: cmake_3-20_compatibility_1.patch -Patch2: cmake_3-20_compatibility_2.patch -# Source: https://src.fedoraproject.org/rpms/wireshark/blob/f8e39e79bf25d6c3fb3f333e58f27165cc959781/f/wireshark-0008-move-glib.patch -Patch8: wireshark-0008-move-glib.patch Patch10: wireshark-0001-dumpcap-permission-denied.patch BuildRequires: bison BuildRequires: flex @@ -172,7 +168,6 @@ %prep # The publisher doesn't sign the source tarball, but a signatures file containing multiple hashes. # Verify hashes in that file against source tarball. -echo "`grep %{name}-%{version}.tar.xz %{SOURCE2} | grep SHA1 | head -n1 | cut -d= -f2` %{SOURCE0}" | sha1sum -c echo "`grep %{name}-%{version}.tar.xz %{SOURCE2} | grep SHA256 | head -n1 | cut -d= -f2` %{SOURCE0}" | sha256sum -c %autosetup -p1 ++++++ wireshark-3.4.4.tar.xz -> wireshark-3.4.5.tar.xz ++++++ /work/SRC/openSUSE:Factory/wireshark/wireshark-3.4.4.tar.xz /work/SRC/openSUSE:Factory/.wireshark.new.12324/wireshark-3.4.5.tar.xz differ: char 26, line 1 ++++++ wireshark-3.4.4.tar.xz.asc -> wireshark-3.4.5.tar.xz.asc ++++++ --- /work/SRC/openSUSE:Factory/wireshark/wireshark-3.4.4.tar.xz.asc 2021-03-15 10:53:49.489118716 +0100 +++ /work/SRC/openSUSE:Factory/.wireshark.new.12324/wireshark-3.4.5.tar.xz.asc 2021-04-24 23:06:59.307211142 +0200 @@ -1,40 +1,40 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 -wireshark-3.4.4.tar.xz: 32290424 bytes -SHA256(wireshark-3.4.4.tar.xz)=729cd11e9715c600e5ad74ca472bacf8af32c20902192d5f2b271268511d4d29 -RIPEMD160(wireshark-3.4.4.tar.xz)=677c151b94af472ae3ae390e51781ec0cc371ddd -SHA1(wireshark-3.4.4.tar.xz)=fa5c553596dcc6a59735f96a9a0845e3c40abab2 - -Wireshark-win64-3.4.4.exe: 61473376 bytes -SHA256(Wireshark-win64-3.4.4.exe)=568d5b3f7dcca301d4f4069b72fd458cd6fb9562c4f06227ccb2a1804b260b26 -RIPEMD160(Wireshark-win64-3.4.4.exe)=6b96ee9476eb489c73c0492a9f4280d89b816f78 -SHA1(Wireshark-win64-3.4.4.exe)=6a9d141fdb5f7ca20542b30ab6292cc3122ff051 - -Wireshark-win32-3.4.4.exe: 56510344 bytes -SHA256(Wireshark-win32-3.4.4.exe)=673b677da839d3fe2840e5b0cf3fc243550c9c927d1ae2a933357da2c915e215 -RIPEMD160(Wireshark-win32-3.4.4.exe)=cea7826baf220ccd8c3bcd512372560fed32e982 -SHA1(Wireshark-win32-3.4.4.exe)=b36eb29de4ad7e5c220b2cc86482946e504ea7c5 - -Wireshark-win64-3.4.4.msi: 49799168 bytes -SHA256(Wireshark-win64-3.4.4.msi)=1e8829be797e3668b17db8407e93dd045095034b520d0d4f0178c7bda159fba5 -RIPEMD160(Wireshark-win64-3.4.4.msi)=52dae81fc928431bd3b40adb9daf4d1038b6397e -SHA1(Wireshark-win64-3.4.4.msi)=6ce20d8985bc7c91a4b1ae11794f17d3f2fbfd69 - -Wireshark-win32-3.4.4.msi: 44765184 bytes -SHA256(Wireshark-win32-3.4.4.msi)=dc4f5d8f07e866ff5bfb2dd963daaaf8556d8e8ba768cf45839c7a9f955bfb07 -RIPEMD160(Wireshark-win32-3.4.4.msi)=125999a47e7505f3ac7dc5cb68ec599265b3f6f7 -SHA1(Wireshark-win32-3.4.4.msi)=c38bc9105e2badf609865b140ad3a366dc96a796 - -WiresharkPortable_3.4.4.paf.exe: 38391936 bytes -SHA256(WiresharkPortable_3.4.4.paf.exe)=494567df57b8cce9f66d1c2167b86fa8e29d4509eef2a938ece22ad6e82b0ce5 -RIPEMD160(WiresharkPortable_3.4.4.paf.exe)=5a2429471f8e533a7cabe97fa6967f5318fe4ec0 -SHA1(WiresharkPortable_3.4.4.paf.exe)=39bddbade8230e4cc21f0be9c4ffd0194a497047 - -Wireshark 3.4.4 Intel 64.dmg: 130951404 bytes -SHA256(Wireshark 3.4.4 Intel 64.dmg)=23cee0b900ef2d421ae190c8226bea2a5ac834e02925778202e3ed4c75e9da6f -RIPEMD160(Wireshark 3.4.4 Intel 64.dmg)=9f167b7c3063f616dd522f8f7f70e17d8b75997d -SHA1(Wireshark 3.4.4 Intel 64.dmg)=2b538e068a1d0e8ef37cdae0c2d45ba3ef1b63b7 +wireshark-3.4.5.tar.xz: 32300144 bytes +SHA256(wireshark-3.4.5.tar.xz)=de1aafd100a1e1207c850d180e97dd91ab8da0f5eb6beec545f725cdb145d333 +RIPEMD160(wireshark-3.4.5.tar.xz)=9f97f8bd34d09cbe6afc2bf655b44940a90154b6 +SHA1(wireshark-3.4.5.tar.xz)=d01a9b5f58206fb458fe9fc2dac88ad0ea7152ce + +Wireshark-win32-3.4.5.exe: 56531712 bytes +SHA256(Wireshark-win32-3.4.5.exe)=bc46bdc14dac4c67033bc5ad5590e4b221d5724ba28569b9134c13528fa37fed +RIPEMD160(Wireshark-win32-3.4.5.exe)=3ff3fc99c3abd8d1e1fb143140a2e51b3cd66473 +SHA1(Wireshark-win32-3.4.5.exe)=14b1372e0a1e1bd709cb0c10d1b21d92bb6a5310 + +Wireshark-win64-3.4.5.exe: 61475448 bytes +SHA256(Wireshark-win64-3.4.5.exe)=e6a7f8b48221b642b8b0911dd1519d3436a5a90e99525e80f1764bf4938b35e5 +RIPEMD160(Wireshark-win64-3.4.5.exe)=047d9c8b23cd7522f2bd1bf03b28c53e0bdfa0d5 +SHA1(Wireshark-win64-3.4.5.exe)=501f87fdc7aeaed6c704ee5a4974f02f13b9d7b0 + +Wireshark-win32-3.4.5.msi: 44761088 bytes +SHA256(Wireshark-win32-3.4.5.msi)=381aeaac7fbd7d7fbfc45292caf93de2bdbf46f57fa30e6af0d6522ba5350ffb +RIPEMD160(Wireshark-win32-3.4.5.msi)=243ffdf35fc3d92cbf977558441fc3de074815be +SHA1(Wireshark-win32-3.4.5.msi)=ee6ae0bd87052fd1e8a59102df7351a557b27c5d + +Wireshark-win64-3.4.5.msi: 49807360 bytes +SHA256(Wireshark-win64-3.4.5.msi)=e6a94b71faaf29c5c3804dcb6aabb26d1d7bf3cbece502fc1f119830d3ea8abf +RIPEMD160(Wireshark-win64-3.4.5.msi)=527b4aa7eff5bd90ba305ef927276cef645cdb4b +SHA1(Wireshark-win64-3.4.5.msi)=c41d1dbb84b77987fcde157d6dddd7b954a186af + +WiresharkPortable_3.4.5.paf.exe: 38402968 bytes +SHA256(WiresharkPortable_3.4.5.paf.exe)=210c688bf7f4efb0995e25939de64d611faf6400798f6eb4b3c9c1f168f522c5 +RIPEMD160(WiresharkPortable_3.4.5.paf.exe)=a61a7f8de529a274b256a3c407d04a3c9564d542 +SHA1(WiresharkPortable_3.4.5.paf.exe)=2b91c30068d9504339dde4d9ed603f71f45ac15f + +Wireshark 3.4.5 Intel 64.dmg: 130985157 bytes +SHA256(Wireshark 3.4.5 Intel 64.dmg)=d5565b525d71a9effe64ff4a84b896c9ce0d0d34959a8e9d2f7093dcf3c8ca68 +RIPEMD160(Wireshark 3.4.5 Intel 64.dmg)=933200a194579946dcb5b42b018fc0abbe6375db +SHA1(Wireshark 3.4.5 Intel 64.dmg)=c0b6bf94349451230724c1e320750136f82d4f4b You can validate these hashes using the following commands (among others): @@ -44,17 +44,17 @@ Other: openssl sha256 wireshark-x.y.z.tar.xz -----BEGIN PGP SIGNATURE----- -iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAmBJH8sACgkQgiRKeOb+ -rupySA//fac78zQqP48trG/MF3Xz53/TAPjTJH1tcrXRQqIlMyLm/cT5oMEUEfm3 -lc7Jzn9wNkrxRTRNJ6jwn2JjKqnIT3XI4cdkZPq/99hI0ob/nK1MjaeJ51XiYJ2E -8y0eU+Rcig9eOX6S5M+O0wQiN/rXpD5JuY3OZsh55C1R+cxiDkNL5AknuwByxaCr -WTw8nTBOvMG5RiKVPyPQYEX6vCmulFzIx97zO20FBUbncKec6BA/h5t93tf55N6e -NmV7cQm/lu41r+t0dBWa4fe/7+XI2NHTbPcgYpIWlviNVzUpY85smXIB2fGoLnmd -kR/TLDDLj5fXjz09P0psRxvNPbSv9St5CAIlPNgESwL8H7us/FOkoiSkcYEySG7p -E4nQ9Q0zCfw0OkNdRvyyuJaiFYWt3BktfpWRgqAZKOHIJl7WR/nY3+Ut4BG3XtC8 -IznUHo9M4dXBYYWd+BYCScpD1+yEHFnATf2y52MHUAackdg/+piNrFnBiJ69KrvE -3jET1MpKqIvfe6/QOSJs4Fyd89x/gRhzxWxtxXXieeEhTuqSRvktecq0P9raGlbZ -QcKJ+7D/uu4C70iHPl/57AzOrAKFKcbhrGed4MUSzuwmTiGy8IiazcHiSVbf3PXQ -ogPHN9sA5uva9z9VqJH/OjHKn7WXmxov5/x65LeIbr6GAKgXW+g= -=Rswq +iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAmCAb4AACgkQgiRKeOb+ +rur5zw/9H2hx3aoA40DeoS8fBsGtHd4T9u9nqhwpmpRfVvIOJNL35CQPAykOaDOV +HxtlCzJ2g2thxTwqZFTsL95t1xlgZuLWXQ9htrtUyTxeNaDV4zXe5fALcgrUuy6v +lsQsGeTyu0XnCnrj5IGRbd7aYR72vCt8tTIP4kC7lgDFTunMvRQW1A5nURCxGVOK +2+O4Gk64Oh1l1LZCEfKfGkpt7cT0QziOcb5Kk62qCdf45oluM8UIa/9PmT2jwMW8 +VSotJxoj5vubYJiek16FUFcQwIpYQ28rGoBjquCkeHaY07S+E3fhHCmMOZ92tyCB +GwRbcxDpmRFywzOncU9j3c1zpBIB3DldmTVYICySDUT0cGR/2d/lJ7FePO36pTJv +zgHkIiGBd06O+nkVOgz6LnBq+TsWa2MbDNQ8jPz5g0IdBYe5OG3A5OvHn/BYFeuc +wCJeNA7qYBK9tBYWuFkuUZBHG83shfmmsb1uOCXn4/vbw/BiaLmQQCHXnk4kvRcK +3iWMtLGFlVgWhl1cqbUERWrOeTJjHKHkTDZPjn8RabMDxQ/wxbKLIPik/CyQyFKh +H4QQvWAHelB147JWf6bzQXU7zHTFguftzDSpw90afMMTbGHh9G7O89mN4D4smjfE +uwJIuTD8yyQnKoWk45LTmwTig/NcrYEsLrJijhnEuMA/+gYBaPc= +=UqYi -----END PGP SIGNATURE-----
