Subject: CVS commit: [pkgsrc-2012Q3] pkgsrc/net/wireshark
From: Steven Drake
Date: 2012-12-05 08:00:31
Message id: 20121205070031.6513C175DD@cvs.netbsd.org

Log Message:
Pullup ticket #3978 - requested by tron
net/wireshark security update

Revisions pulled up:
- net/wireshark/Makefile                                        1.92
- net/wireshark/distinfo                                        1.61

---
   Module Name:	pkgsrc
   Committed By:	tron
   Date:		Sun Dec  2 09:52:11 UTC 2012

   Modified Files:
   	pkgsrc/net/wireshark: Makefile distinfo

   Log Message:
   Update "wireshark" package to version 1.8.4. Changes since version \ 
1.8.3:
   - The following vulnerabilities have been fixed.
     o wnpa-sec-2012-30
       Wireshark could leak potentially sensitive host name
       resolution information when working with multiple pcap-ng
       files. Discovered by Laura Chappell.
       Versions affected: 1.8.0 to 1.8.3.
     o wnpa-sec-2012-31
       The USB dissector could go into an infinite loop. (Bug 7787)
       Versions affected: 1.8.0 to 1.8.3, 1.6.0 to 1.6.11.
     o wnpa-sec-2012-32
       The sFlow dissector could go into an infinite loop. (Bug 7789)
       Versions affected: 1.8.0 to 1.8.3.
     o wnpa-sec-2012-33
       The SCTP dissector could go into an infinite loop. (Bug 7802)
       Versions affected: 1.8.0 to 1.8.3.
     o wnpa-sec-2012-34
       The EIGRP dissector could go into an infinite loop. (Bug 7800)
       Versions affected: 1.8.0 to 1.8.3.
     o wnpa-sec-2012-35
       The ISAKMP dissector could crash. (Bug 7855)
       Versions affected: 1.8.0 to 1.8.3, 1.6.0 to 1.6.11.
     o wnpa-sec-2012-36
       The iSCSI dissector could go into an infinite loop. (Bug 7858)
       Versions affected: 1.8.0 to 1.8.3, 1.6.0 to 1.6.11.
     o wnpa-sec-2012-37
       The WTP dissector could go into an infinite loop. (Bug 7869)
       Versions affected: 1.8.0 to 1.8.3, 1.6.0 to 1.6.11.
     o wnpa-sec-2012-38
       The RTCP dissector could go into an infinite loop. (Bug 7879)
       Versions affected: 1.8.0 to 1.8.3, 1.6.0 to 1.6.11.
     o wnpa-sec-2012-39
       The 3GPP2 A11 dissector could go into an infinite loop. (Bug
       7801)
       Versions affected: 1.8.0 to 1.8.3.
     o wnpa-sec-2012-40
       The ICMPv6 dissector could go into an infinite loop. (Bug
       7844)
       Versions affected: 1.8.0 to 1.8.3, 1.6.0 to 1.6.11.
   - The following bugs have been fixed:
     o Menu and Title bars inaccessible using GTK2 (non-legacy) with
       two monitors. (Bug 553)
     o 802.11 Probe Response fails to parse. (Bug 1284)
     o Tshark - decimal symbol. (Bug 2880)
     o Malformed tpncp.dat file can crash Wireshark. (Bug 6665)
     o SSL decryption not work even with example capture file and
       key. (Bug 6869)
     o Info line is incorrect on SIP message containing another SIP
       message in body. (Bug 7780)
     o OOPS: dissector table "sctp.ppi" doesn't exist Protocol being
       registered is "Datagram Transport Layer Security". (Bug 7784)
     o Dissection of IEEE 802.11 Channel Switch Announcement element
       fails. (Bug 7797)
     o Invalid memory accesses when loading RADIUS captures. (Bug
       7803)
     o ISUP CIC should have format BASE_DEC, not BASE_HEX. (Bug 7848)
     o We don't handle pcap-ng files with IDBs that come after packet
       blocks. (Bug 7851)
     o '*' wildcard in the 'Src IP' or 'Dest IP' field of the ESP SA
       dialog does not work. (Bug 7866)
     o nas_eps dissector does not decode some esm message. (Bug 7912)
     o WLAN decryption status not updated after updating WEP/WPA
       keys. (Bug 7921)
     o IPv6 Option Pad1 Incorrect dissection. (Bug 7938)
     o Print GNUTLS error message if PEM import fails. (Bug 7948)
     o GSM classmark3 8-PSK decode error. (Bug 7964)
     o Parsing the Server Name Indication extension in SSL/TLS
       traffic reads some fields incorrectly. (Bug 7967)
     o Lua code crashes wireshark after update to 1.8.3. (Bug 7976)
     o 2 bugs in Ran-Information-Error Rim Container. (Bug 8000)
     o Misspelling (typo) in IPv6 display filter field name. (Bug
       8006)
     o Two BSSGP dissector bugs. (Bug 8008)
     o Core dump during SCTP association analysis. (Bug 8011)
   - Updated Protocol Support
     3GPP2 A11, BSSGP, EIGRP, FMP/NOTIFY, GSM A, ICMP, ICMPv6, IEEE
     802.11, IPsec, IPv6, ISAKMP, iSCSI, LTE RRC, NAS EPS, NDPS, Prism,
     RADIUS, RRC, RTCP, SCTP, sFlow, SIP, SMB2, SSL/TLS, TPNCP, USB
   - New and Updated Capture File Support
     CommView NCF, iSeries, pcap-ng.

Files:
RevisionActionfile
1.86.2.3modifypkgsrc/net/wireshark/Makefile
1.59.2.2modifypkgsrc/net/wireshark/distinfo