Subject: CVS commit: pkgsrc/net/wireshark
From: Adam Ciarcinski
Date: 2024-01-05 18:57:27
Message id: 20240105175727.85E1CFA42@cvs.NetBSD.org
Log Message:
wireshark: updated to 4.2.2

Wireshark 4.2.2

Bug Fixes

 The following vulnerabilities have been fixed:

   • wnpa-sec-2024-01[2] GVCP dissector crash. Issue 19496[3].
     CVE-2024-0208[4].

   • wnpa-sec-2024-02[5] IEEE 1609.2 dissector crash. Issue 19501[6].
     CVE-2024-0209[7].

   • wnpa-sec-2024-03[8] HTTP3 dissector crash. Issue 19502[9].
     CVE-2024-0207[10].

   • wnpa-sec-2024-04[11] Zigbee TLV dissector crash. Issue 19504[12].
     CVE-2024-0210[13].

   • wnpa-sec-2024-05[14] DOCSIS dissector crash. Issue 19557[15].
     CVE-2024-0211[16].

 The following bugs have been fixed:

   • Capture filters not saved to recently used list. Issue 12918[17].

   • CFM dissector does not handle Sender ID TLV correctly when
     Chassis ID Length is zero. Issue 13720[18].

   • OSS-Fuzz 64290: wireshark:fuzzshark_ip: Global-buffer-overflow in
     dissect_zcl_read_attr_struct. Issue 19490[19].

   • Overriding capture options set by preference by command line
     arguments (like -S) doesn’t work. Issue 14549[20].

   • Segfault when enabling monitor mode on wireless card that falsely
     claims to support it. Issue 16693[21].

   • Documented format of temporary file name is out of date in the
     Wireshark User’s Guide. Issue 18464[22].

   • Selection highlight lost when interface list is sorted. Issue
     19133[23].

   • HTTP3 malformed packets. Issue 19475[24].

   • Capture filter compilation fails with obscure error message.
     Issue 19480[25].

   • XML: Parsing encoding attribute failed when standalone attribute
     exists. Issue 19485[26].

   • Display filter expressions where the protocol name starts with
     digit and contains a hyphen are rejected. Issue 19489[27].

   • diameter.3GPP-* display filters not working after upgrade to
     version 4.2.0. Issue 19493[28].

   • GigE-vision: Control Protocol shows \"unknown\" as value for
     ASCII character set. Issue 19494[29].

   • The HTTP/3 Request Header URI is not correct. Issue 19497[30].

   • QUIC/TLS not extracting \"h3\" from ALPN in a capture. Issue
     19503[31].

   • Documentation on system requirements should be updated. Issue
     19512[32].

   • 4.2.0: init.lua in subdirectories not loaded anymore. Issue
     19516[33].

   • Malformed SIP/SDP messages: components are not decoded properly.
     Issue 19518[34].

   • heuristic_protos do not reset on profile swap. Issue 19520[35].

   • Wireshark 4.2 crashes on Apply As Column. Issue 19521[36].

   • NFLOG timestamp is incorrect. Issue 19525[37].

   • Qt6 Crash (Double Free) When Attempting to Save TCP Stream Graph.
     Issue 19529[38].

   • Fixed parsing display filter expressions containing literal OID
     values, e.g. `snmp.name == 1.3.6.1.2.1.1.3.0`.
Files:
RevisionActionfile
1.308modifypkgsrc/net/wireshark/Makefile
1.87modifypkgsrc/net/wireshark/PLIST
1.171modifypkgsrc/net/wireshark/distinfo