Your message dated Sat, 10 Feb 2007 11:35:05 +0100
with message-id <[EMAIL PROTECTED]>
and subject line Bug#410364: wireshark security vulnerability - 0.99.5 released
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: wireshark
Version: 0.99.5
http://www.wireshark.org/security/wnpa-sec-2007-01.html
Wireshark 0.99.5 fixes the following vulnerabilities:
The TCP dissector could hang or crash while reassembling HTTP packets. (Bug
1200)
Versions affected: 0.99.2 to 0.99.4
CVE-2007-0459
The HTTP dissector could crash.
Versions affected: 0.99.3 to 0.99.4
CVE-2007-0458
On some systems, the IEEE 802.11 dissector could crash.
Versions affected: 0.10.14 to 0.99.4
CVE-2007-0457
On some systems, the LLT dissector could crash.
Versions affected: 0.99.3 to 0.99.4
CVE-2007-0456
Watch out for a gcc-3 compile error
https://bugs.gentoo.org/show_bug.cgi?id=165340
FreeBSD may have some patches - investigating now - will report in above url
--
Daniel Black <[EMAIL PROTECTED]>
Gentoo Foundation
pgpjq2rnmRgUu.pgp
Description: PGP signature
--- End Message ---
--- Begin Message ---
Daniel Black wrote:
> Package: wireshark
> Version: 0.99.5
>
> http://www.wireshark.org/security/wnpa-sec-2007-01.html
>
> Wireshark 0.99.5 fixes the following vulnerabilities:
wireshark (0.99.4-4) unstable; urgency=high
* Backported security fixes from 0.99.5pre1
* The TCP dissector could hang or crash while reassembling HTTP packets.
* The HTTP dissector could crash.
* On some systems, the IEEE 802.11 dissector could crash.
* On some systems, the LLT dissector could crash.
-- Frederic Peters <[EMAIL PROTECTED]> Fri, 19 Jan 2007 21:49:04 +0100
Thanks for the notice anyway,
Frederic
--- End Message ---
