Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package wireshark for openSUSE:Factory checked in at 2026-01-15 16:44:37 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/wireshark (Old) and /work/SRC/openSUSE:Factory/.wireshark.new.1928 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "wireshark" Thu Jan 15 16:44:37 2026 rev:246 rq:1327347 version:4.6.3 Changes: -------- --- /work/SRC/openSUSE:Factory/wireshark/wireshark.changes 2025-12-05 16:51:00.614271361 +0100 +++ /work/SRC/openSUSE:Factory/.wireshark.new.1928/wireshark.changes 2026-01-15 16:44:44.156488603 +0100 @@ -1,0 +2,11 @@ +Thu Jan 15 08:51:27 UTC 2026 - Robert Frohl <[email protected]> + +- Wireshark 4.6.3 + * CVE-2026-0961: BLF file parser crash (bsc#1256738). + * CVE-2026-0959: IEEE 802.11 dissector crash (bsc#1256734). + * CVE-2026-0962: SOME/IP-SD dissector crash (bsc#1256739). + * CVE-2026-0960: HTTP3 dissector infinite loop (bsc#1256736). +- Many more features, bug fixes and updated protocol support as listed in: + https://www.wireshark.org/docs/relnotes/wireshark-4.6.3.html + +------------------------------------------------------------------- @@ -6 +17 @@ - * MCVE-2025-13946: MEGACO dissector infinite loop (bsc#1254472). + * CVE-2025-13946: MEGACO dissector infinite loop (bsc#1254472). Old: ---- wireshark-4.6.2.tar.xz wireshark-4.6.2.tar.xz.hash New: ---- wireshark-4.6.3.tar.xz wireshark-4.6.3.tar.xz.hash ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ wireshark.spec ++++++ --- /var/tmp/diff_new_pack.xQaGZZ/_old 2026-01-15 16:44:46.004565312 +0100 +++ /var/tmp/diff_new_pack.xQaGZZ/_new 2026-01-15 16:44:46.008565477 +0100 @@ -34,7 +34,7 @@ %bcond_with qt6 %endif Name: wireshark -Version: 4.6.2 +Version: 4.6.3 Release: 0 Summary: A Network Traffic Analyser License: GPL-2.0-or-later AND GPL-3.0-or-later ++++++ _scmsync.obsinfo ++++++ --- /var/tmp/diff_new_pack.xQaGZZ/_old 2026-01-15 16:44:46.064567802 +0100 +++ /var/tmp/diff_new_pack.xQaGZZ/_new 2026-01-15 16:44:46.072568134 +0100 @@ -1,4 +1,4 @@ -mtime: 1764793967 -commit: 897708417dbf5f3b1251f4f450242c5e2707298f68983fe92caaa28681405a4b +mtime: 1768469856 +commit: 19616b3c78f70d6dae7af79e87381efc5b9638967cda7b269684a839fdbf73ca url: https://src.opensuse.org/rfrohl/wireshark ++++++ build.specials.obscpio ++++++ ++++++ build.specials.obscpio ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/.gitignore new/.gitignore --- old/.gitignore 1970-01-01 01:00:00.000000000 +0100 +++ new/.gitignore 2026-01-15 10:37:41.000000000 +0100 @@ -0,0 +1 @@ +.osc ++++++ wireshark-4.6.2.tar.xz -> wireshark-4.6.3.tar.xz ++++++ /work/SRC/openSUSE:Factory/wireshark/wireshark-4.6.2.tar.xz /work/SRC/openSUSE:Factory/.wireshark.new.1928/wireshark-4.6.3.tar.xz differ: char 15, line 1 ++++++ wireshark-4.6.2.tar.xz.hash -> wireshark-4.6.3.tar.xz.hash ++++++ --- /work/SRC/openSUSE:Factory/wireshark/wireshark-4.6.2.tar.xz.hash 2025-12-05 16:51:00.390261962 +0100 +++ /work/SRC/openSUSE:Factory/.wireshark.new.1928/wireshark-4.6.3.tar.xz.hash 2026-01-15 16:44:44.000482128 +0100 @@ -1,29 +1,29 @@ -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 -wireshark-4.6.2.tar.xz: 50581900 bytes -SHA256(wireshark-4.6.2.tar.xz)=e218e3b3899e5d6e35a5fe95eeeabead587ed084cbf5fc330ac827f9a3137de8 -SHA1(wireshark-4.6.2.tar.xz)=7b87d40d80552708befbb852bb1414c02010b2dc - -Wireshark-4.6.2-arm64.exe: 75342184 bytes -SHA256(Wireshark-4.6.2-arm64.exe)=ed0f03cc3d4a0815731ca3c8531a5ec05e5a0d965a2c868d1d4c995d025f3758 -SHA1(Wireshark-4.6.2-arm64.exe)=c93d4d271e01a9400f215ede235b2d86e344a4fa - -Wireshark-4.6.2-x64.exe: 96624568 bytes -SHA256(Wireshark-4.6.2-x64.exe)=373a93e9b5ffa3559938424a2aabd3338786cff7bef084641c2c5e5bfb44325e -SHA1(Wireshark-4.6.2-x64.exe)=9680681c8426ed46bbe10533817dd067e73473cf - -Wireshark-4.6.2-x64.msi: 73805824 bytes -SHA256(Wireshark-4.6.2-x64.msi)=fa979913b8caceaec071156b50be0b4a999bb0c21d29f05e1a8ee61ed90c1b45 -SHA1(Wireshark-4.6.2-x64.msi)=b23a77980cf01f31fcc62b8ed9a7bc602f1d31cd - -WiresharkPortable64_4.6.2.paf.exe: 95699608 bytes -SHA256(WiresharkPortable64_4.6.2.paf.exe)=00e42c7c303cda98266dea27cf6e744f1bda882d03384a484a5662ea9f943ffe -SHA1(WiresharkPortable64_4.6.2.paf.exe)=75d3edd27386dc2352ab1056b42297b8214150f7 - -Wireshark 4.6.2.dmg: 141491581 bytes -SHA256(Wireshark 4.6.2.dmg)=238af1a676f66a465de3edb6dfb7ce8bed5e91e91b26030f4c1a231982f8d206 -SHA1(Wireshark 4.6.2.dmg)=c5f1d1bf5680f3b6fcfde75766dc1be5bdc5ea3b +wireshark-4.6.3.tar.xz: 50636640 bytes +SHA256(wireshark-4.6.3.tar.xz)=9fa6a745df8540899dc9d433e4634d6755371ff87bd722ce04c7d7b0132d9af3 +SHA1(wireshark-4.6.3.tar.xz)=48946917e956315938af4f21d0813b8a19512f6b + +Wireshark-4.6.3-x64.exe: 96653880 bytes +SHA256(Wireshark-4.6.3-x64.exe)=09db2e7365b8dc56bc293b5e2849d9d06ebd8411f5a5e72e528964fbb051f283 +SHA1(Wireshark-4.6.3-x64.exe)=cec27b460433761367e22b6695ecbde736adc9d9 + +Wireshark-4.6.3-arm64.exe: 75367848 bytes +SHA256(Wireshark-4.6.3-arm64.exe)=c9578cef62c7614824679c6025c10a033ddb2e56347ef4f6c1a7fce6f4e28563 +SHA1(Wireshark-4.6.3-arm64.exe)=abbac496d128a2313cfe54ba4f30a971383cd0d2 + +Wireshark-4.6.3-x64.msi: 73793536 bytes +SHA256(Wireshark-4.6.3-x64.msi)=59b5ac08efc1bd595064b942d33c0ae63e4343db063fd388ce69bdd42285f542 +SHA1(Wireshark-4.6.3-x64.msi)=eca843571ca6ca3570798a659f42ceb0dac3847b + +WiresharkPortable64_4.6.3.paf.exe: 95753504 bytes +SHA256(WiresharkPortable64_4.6.3.paf.exe)=ee62f97a0f91ae998fa8a34bef640ee0a5bd8582324d59a33c1bdf3b5d833e07 +SHA1(WiresharkPortable64_4.6.3.paf.exe)=e76bfe3ead03e8597532db2e6be9a2fb858d18b4 + +Wireshark 4.6.3.dmg: 141516002 bytes +SHA256(Wireshark 4.6.3.dmg)=788fef0f62fc58d2523270256694efc30e79f3584d4895eb066ca333daa88fe9 +SHA1(Wireshark 4.6.3.dmg)=233ca01482e9fbe6770b173c83e67d825c72e195 You can validate these hashes using the following commands (among others): @@ -33,17 +33,17 @@ Other: openssl sha256 wireshark-x.y.z.tar.xz -----BEGIN PGP SIGNATURE----- -iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAmkwkpQACgkQgiRKeOb+ -ruq4yw/+L12M1TcyWbmyOoJpZ94peNb9qjY+sOOv4QaQ2vaYeITDu//Fh5bgReLn -eVZ9IpNV4e5efTXLyMAHrDvWx02BaUK6HustYwV1BMifdrI0gqLoZ85nPSBPX+GE -knDF8FJBTM9eulJsm3ce9+UlS0dxVgyliumE8KUhOKzI/VYOxT8cYGabNHroKYfv -cQdHSsGRHoybR3CCg9wgXgQQbQpVKUV0MseSQcJv3Gsp5MF9XAVNW345Y+Wc39fs -r18mrwOzC4sLrgMchIMOi+4J8JMvf/ieDzHm9lI3UwlciA6HVN55OK6+CKwMLedK -wvPrEm2fAyzdXcwGxyQ91lmvDX16zZi228+84NZ9/vPveMmGsPv201356swTJoZ3 -yo6FDGN2i1LKeDfsUoiy8PuEnsgmOql72KouHgUL8/SCP7JPsWXjXAWis1qIwE+5 -ktWCzjR85J2Wyl2VxiMmktn85gAwWLC662gmH0NlOV7ihhggxTOS02AbSO0azAN9 -4CYfAKpw2ol1OXwolwzdUaHAYt16g5CVGguHKhNZQyTWjv2URZu8OGT2H0Iukv7k -mkMZUHu5NXFrVFodChWO23Mk0pJJk5jtyGvjKoYmqhoBmPMq9vp4tepmga7TK2eI -Fxi9kPnmCsoLTpdwLlxmyEGRy385QMH5l+zPY0L0U8OPlU2sEq8= -=ZIN3 +iQIzBAEBCgAdFiEEWlrbp9vqbD+HIk8ZgiRKeOb+ruoFAmln7WEACgkQgiRKeOb+ +ruowmBAAoFODOlmmZmDps0qZPYVX5lP5DAo//8XqqAYPkerwlyh6nQXWklb5dAiW +DIxhsqmM8K8sImdhFpfrspmIFFn+HYOJXgz7nuRKwK8wRzqBsFBk/CYva+T26lho +TcNvF2YHrnYUsKOZ+S8QDysxAVgKjzJj+9/VKFl9p2dHofhBe8N0o6EQdtxKqFrh +HtSUuvDjkfITqN6MEM2qIHi46VLRGErbPz/KEbDhvUFOhbBIz0WzAbotOrHvJVCN +agMOWQAuzAfOB5OfldyM2NtpKmK6IKDMZ6YHlABlE9z10S/Z4stGNqUU8vA9+axj +aWP7sK6fDHi2JmdHoaMY48blCmROhwzK0HEnkMpawCkewMk4hoZJbcDotrEZeALo +yM1/IBDa99PpLMw7nUaFY370ND+7oOpTd1FKNfe4G8pWGEyHr4aQCbQSet25j/qW +OHoK7iz6KGZp7P0SAJmh1InHBiilhqZ4P8TFi5K1nwRRkfPU3uTWdyg7ZjLfX1gE +i+LBZEMoWTsDv9nsgxheO+5+EZ6Tmhye43MiS19ku6Kj6bCE5fxpcFedW0J7TqGJ +ro1TQg645ZHPrJ7ES75gF+Nu0tBFmxQvCkcBVBNXaQL03QwdIsCGqlqKgXcdXAx8 +ApgsaptYl16dgbZ/V2DiiIq+lHsqEJe+8oLTGM9Cw6KsqmjWHJk= +=1Dq6 -----END PGP SIGNATURE-----
