Your message dated Tue, 09 Feb 2021 15:34:44 +0000
with message-id <[email protected]>
and subject line Bug#981791: fixed in wireshark 3.4.3-1
has caused the Debian Bug report #981791,
regarding wireshark: CVE-2021-22173 CVE-2021-22174
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
981791: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=981791
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: wireshark
Version: 3.4.2-1
Severity: important
Tags: security upstream
X-Debbugs-Cc: [email protected], Debian Security Team <[email protected]>
Hi,
The following vulnerabilities were published for wireshark.
CVE-2021-22173[0]:
| USB HID dissector memory leak
CVE-2021-22174[1]:
| USB HID dissector could crash
If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2021-22173
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22173
https://www.wireshark.org/security/wnpa-sec-2021-01.html
[1] https://security-tracker.debian.org/tracker/CVE-2021-22174
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22174
https://www.wireshark.org/security/wnpa-sec-2021-02.html
Regards,
Salvatore
--- End Message ---
--- Begin Message ---
Source: wireshark
Source-Version: 3.4.3-1
Done: Balint Reczey <[email protected]>
We believe that the bug you reported is fixed in the latest version of
wireshark, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Balint Reczey <[email protected]> (supplier of updated wireshark package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Fri, 29 Jan 2021 23:24:08 +0100
Source: wireshark
Architecture: source
Version: 3.4.3-1
Distribution: unstable
Urgency: medium
Maintainer: Balint Reczey <[email protected]>
Changed-By: Balint Reczey <[email protected]>
Closes: 981791
Changes:
wireshark (3.4.3-1) unstable; urgency=medium
.
* New upstream version 3.4.3
- security fixes (Closes: #981791):
- USB HID dissector memory leak (CVE-2021-22173)
- USB HID dissector crash (CVE-2021-22174)
Checksums-Sha1:
d7a355304c062459ba5b46171132257af342660b 3509 wireshark_3.4.3-1.dsc
ce54ca7e780c4610bd6a2e09fafe182d63c0cb79 32251372 wireshark_3.4.3.orig.tar.xz
c65576098121439d599eadb861e10248df53ab81 74388 wireshark_3.4.3-1.debian.tar.xz
64550876973eb63edf109e82bdf45201c3d54815 19449
wireshark_3.4.3-1_source.buildinfo
Checksums-Sha256:
73ab68929bf40d610a8c26d4ca36226baaac886f3b557b87dd258e92439009d5 3509
wireshark_3.4.3-1.dsc
abfd2779d736bec2f140a6d365ce75a8cb057f5efd1ac741d5e08b7a45f63460 32251372
wireshark_3.4.3.orig.tar.xz
b51d845fd96aa93024f7171aa659f6b07d6935fb1d4b8a147ee9bd163336e1e5 74388
wireshark_3.4.3-1.debian.tar.xz
efeeeb6121b13f420f1088c19e9ba564e105cda10cfda952eeb86c59e4b229ce 19449
wireshark_3.4.3-1_source.buildinfo
Files:
c3d4cb801a7979bc829c758abe871c80 3509 net optional wireshark_3.4.3-1.dsc
3f9406a524af2cae7e1a6a5038ab2356 32251372 net optional
wireshark_3.4.3.orig.tar.xz
6e6af48f12d5e81a6bd5693ec333ef74 74388 net optional
wireshark_3.4.3-1.debian.tar.xz
70fb783bdab1173a67131f38698d356f 19449 net optional
wireshark_3.4.3-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----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=6CKz
-----END PGP SIGNATURE-----
--- End Message ---
