Subject: CVS commit: [pkgsrc-2013Q1] pkgsrc/net/wireshark
From: S.P.Zeidler
Date: 2013-06-22 14:52:34
Message id: 20130622125234.6706696@cvs.netbsd.org

Log Message:
Pullup ticket #4159 - requested by tron
net/wireshark: security update

Revisions pulled up:
- net/wireshark/Makefile                                        1.103
- net/wireshark/distinfo                                        1.66

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	tron
   Date:		Tue Jun 11 22:57:59 UTC 2013

   Modified Files:
   	pkgsrc/net/wireshark: Makefile distinfo

   Log Message:
   Update "wireshark" package to version 1.8.8. Changes since 1.8.7:
   - Bug Fixes
     The following vulnerabilities have been fixed.
       o wnpa-sec-2013-32
         The CAPWAP dissector could crash. Discovered by Laurent Butti.
         (Bug 8725)
         Versions affected: 1.8.0 to 1.8.7, 1.6.0 to 1.6.15.
       o wnpa-sec-2013-33
         The GMR-1 BCCH dissector could crash. Discovered by Sylvain
         Munaut and Laurent Butti. (Bug 7664, Bug 8726 )
         Versions affected: 1.8.0 to 1.8.7.
       o wnpa-sec-2013-34
         The PPP dissector could crash. Discovered by Laurent Butti.
         (Bug 7880, Bug 8727 )
         Versions affected: 1.8.0 to 1.8.7.
       o wnpa-sec-2013-35
         The NBAP dissector could crash. (Bug 8697)
         Versions affected: 1.8.0 to 1.8.7.
       o wnpa-sec-2013-36
         The RDP dissector could crash. Discovered by Laurent Butti
         (Bug 8729)
         Versions affected: 1.8.0 to 1.8.7.
       o wnpa-sec-2013-37
         The GSM CBCH dissector could crash. Discovered by Laurent
         Butti (Bug 8730)
         Versions affected: 1.8.0 to 1.8.7.
       o wnpa-sec-2013-38
         The Assa Abloy R3 dissector could consume excessive memory and
         CPU. (Bug 8764)
         Versions affected: 1.8.0 to 1.8.7.
       o wnpa-sec-2013-39
         The HTTP dissector could overrun the stack. (Bug 8733)
         Versions affected: 1.8.0 to 1.8.7, 1.6.0 to 1.6.15.
       o wnpa-sec-2013-40
         The Ixia IxVeriWave file parser could overflow the heap.
         Discovered by Sachin Shinde. (Bug 8760)
         Versions affected: 1.8.0 to 1.8.7.
       o wnpa-sec-2013-41
         The DCP ETSI dissector could crash. (Bug 8717)
         Versions affected: 1.10.0, 1.8.0 to 1.8.7, 1.6.0 to 1.6.15.
     The following bugs have been fixed:
       o TRY_TO_FAKE_THIS_ITEM disables bounds errors. (Bug 3290)
       o Multiple expert info in a packet does not cause the most
         "severe" to be displayed in expert column. (Bug 7733)
       o tshark -z io,stat reports bad byte counts if filter doesn't
         match anything. (Bug 8066)
       o Add decryption for WPA eapol 4-way handshake. (Bug 8680)
       o wireshark is crashing while attempting to use 'SCTP' ->
         'Prepare Filter for this Association'. (Bug 8731)
       o Crash analyzing VoIP Calls (T38). (Bug 8736)
       o IMAP Dissector, Missing byte. (Bug 8739)
       o C12.22 Invocation Id shows negative sometimes. (Bug 8744)
       o gsm_a_dtap dissector (SMS): under certain conditions fillbits
         may be displayed for an alphanumeric TP-Originating-Address.
         (Bug 8756)
       o TETRA dissector assertion. (Bug 8768)
       o Mark retransmitted SYN and FIN packets as retransmissions.
   - Updated Protocol Support
     Bittorrent DHT, C12.22, CAPWAP, DCP ETSI, EAPOL, GMR-1 BCCH, GSM
     CBCH, GSM SMS, HTTP, IMAP, NBAP, PPP, R3, RDP, SGsAP, T.38, TETRA
   - New and Updated Capture File Support
     Ixia IxVeriWave.

   To generate a diff of this commit:
   cvs rdiff -u -r1.102 -r1.103 pkgsrc/net/wireshark/Makefile
   cvs rdiff -u -r1.65 -r1.66 pkgsrc/net/wireshark/distinfo

Files:
RevisionActionfile
1.97.2.2modifypkgsrc/net/wireshark/Makefile
1.63.2.2modifypkgsrc/net/wireshark/distinfo