Subject: CVS commit: pkgsrc/net/wireshark
From: Adam Ciarcinski
Date: 2024-01-04 15:47:29
Message id: 20240104144729.A5274FA42@cvs.NetBSD.org

Log Message:
wireshark: updated to 4.2.1

Wireshark 4.2.1 Release Notes

What’s New

 Bug Fixes

  The following vulnerabilities have been fixed:

    • wnpa-sec-2024-01[2] GVCP dissector crash. Issue 19496[3].
      CVE-2024-0208[4].

    • wnpa-sec-2024-02[5] IEEE 1609.2 dissector crash. Issue 19501[6].
      CVE-2024-0209[7].

    • wnpa-sec-2024-03[8] HTTP3 dissector crash. Issue 19502[9].
      CVE-2024-0207[10].

    • wnpa-sec-2024-04[11] Zigbee TLV dissector crash. Issue 19504[12].
      CVE-2024-0210[13].

    • wnpa-sec-2024-05[14] DOCSIS dissector crash. Issue 19557[15].
      CVE-2024-0211[16].

  The following bugs have been fixed:

    • Capture filters not saved to recently used list. Issue 12918[17].

    • CFM dissector does not handle Sender ID TLV correctly when
      Chassis ID Length is zero. Issue 13720[18].

    • OSS-Fuzz 64290: wireshark:fuzzshark_ip: Global-buffer-overflow in
      dissect_zcl_read_attr_struct. Issue 19490[19].

    • Overriding capture options set by preference by command line
      arguments (like -S) doesn’t work. Issue 14549[20].

    • Segfault when enabling monitor mode on wireless card that falsely
      claims to support it. Issue 16693[21].

    • Documented format of temporary file name is out of date in the
      Wireshark User’s Guide. Issue 18464[22].

    • Selection highlight lost when interface list is sorted. Issue
      19133[23].

    • HTTP3 malformed packets. Issue 19475[24].

    • Capture filter compilation fails with obscure error message.
      Issue 19480[25].

    • XML: Parsing encoding attribute failed when standalone attribute
      exists. Issue 19485[26].

    • Display filter expressions where the protocol name starts with
      digit and contains a hyphen are rejected. Issue 19489[27].

    • diameter.3GPP-* display filters not working after upgrade to
      version 4.2.0. Issue 19493[28].

    • GigE-vision: Control Protocol shows \"unknown\" as value for
      ASCII character set. Issue 19494[29].

    • The HTTP/3 Request Header URI is not correct. Issue 19497[30].

    • QUIC/TLS not extracting \"h3\" from ALPN in a capture. Issue
      19503[31].

    • Documentation on system requirements should be updated. Issue
      19512[32].

    • 4.2.0: init.lua in subdirectories not loaded anymore. Issue
      19516[33].

    • Malformed SIP/SDP messages: components are not decoded properly.
      Issue 19518[34].

    • heuristic_protos do not reset on profile swap. Issue 19520[35].

    • Wireshark 4.2 crashes on Apply As Column. Issue 19521[36].

    • NFLOG timestamp is incorrect. Issue 19525[37].

    • Qt6 Crash (Double Free) When Attempting to Save TCP Stream Graph.
      Issue 19529[38].

    • Fixed parsing display filter expressions containing literal OID
      values, e.g. `snmp.name == 1.3.6.1.2.1.1.3.0`.

Files:
RevisionActionfile
1.307modifypkgsrc/net/wireshark/Makefile
1.86modifypkgsrc/net/wireshark/PLIST
1.170modifypkgsrc/net/wireshark/distinfo