Subject: CVS commit: [pkgsrc-2013Q4] pkgsrc/net/wireshark
From: S.P.Zeidler
Date: 2014-03-08 21:33:36
Message id: 20140308203337.02D5E96@cvs.netbsd.org

Log Message:
Pullup ticket #4336 - requested by tron
net/wireshark: security update

Revisions pulled up:
- net/wireshark/Makefile                                        1.117
- net/wireshark/distinfo                                        1.73

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	tron
   Date:		Sat Mar  8 10:38:26 UTC 2014

   Modified Files:
   	pkgsrc/net/wireshark: Makefile distinfo

   Log Message:
   Update "wireshark" package to version 1.10.6. Changes since 1.10.5:
   - Bug Fixes
      The following vulnerabilities have been fixed.
        * wnpa-sec-2014-01
          The NFS dissector could crash. Discovered by Moshe Kaplan.
          (Bug 9672)
          Versions affected: 1.10.0 to 1.10.5, 1.8.0 to 1.8.12
          CVE-2014-2281
        * wnpa-sec-2014-02
          The M3UA dissector could crash. Discovered by Laurent
          Butti. (Bug 9699)
          Versions affected: 1.10.0 to 1.10.5
          CVE-2014-2282
        * wnpa-sec-2014-03
          The RLC dissector could crash. (Bug 9730)
          Versions affected: 1.10.0 to 1.10.5, 1.8.0 to 1.8.12
          CVE-2014-2283
        * wnpa-sec-2014-04
          The MPEG file parser could overflow a buffer. Discovered by
          Wesley Neelen. (Bug 9843)
          Versions affected: 1.10.0 to 1.10.5, 1.8.0 to 1.8.12
          CVE-2014-2299
      The following bugs have been fixed:
        * Customized OUI is not recognized correctly during
          dissection. (Bug 9122)
        * Properly decode CAPWAP Data Keep-Alives. (Bug 9165)
        * Build failure with GTK 3.10 - GTK developers have gone
          insane. (Bug 9340)
        * SIGSEGV/SIGABRT during free of TvbRange using a chained
          dissector in lua. (Bug 9483)
        * MPLS dissector no longer registers itself in "ppp.protocol"
          table. (Bug 9492)
        * Tshark doesn't display the longer data fields (mbtcp).
          (Bug 9572)
        * DMX-CHAN disector does not clear strbuf between rows.
          (Bug 9598)
        * Dissector bug, protocol SDP: proto.c:4214: failed assertion
          "length >=3D 0". (Bug 9633)
        * False error: capture file appears to be damaged or corrupt.
          (Bug 9634)
        * SMPP field source_telematics_id field length different from
          spec. (Bug 9649)
        * Lua: bitop library is missing in Lua 5.2. (Bug 9720)
        * GTPv1-C / MM Context / Authentication quintuplet / RAND is
          not correct. (Bug 9722)
        * Lua: ProtoField.new() is buggy. (Bug 9725)
        * Lua: ProtoField.bool() VALUESTRING argument is not optional
          but was supposed to be. (Bug 9728)
        * Problem with CAPWAP Wireshark Dissector. (Bug 9752)
        * nas-eps dissector: CS Service notification dissection stops
          after Paging identity IE. (Bug 9789)
   - New and Updated Features
     IPv4 checksum verfification is now disabled by default.
   - Updated Protocol Support
      AppleTalk, CAPWAP, DMX-CHAN, DSI, DVB-CI, ESS, GTPv1, IEEE
      802a, M3UA, Modbus/TCP, NAS-EPS, NFS, OpenSafety, SDP, and SMPP
   - New and Updated Capture File Support
      libpcap, MPEG, and pcap-ng

   To generate a diff of this commit:
   cvs rdiff -u -r1.116 -r1.117 pkgsrc/net/wireshark/Makefile
   cvs rdiff -u -r1.72 -r1.73 pkgsrc/net/wireshark/distinfo

Files:
RevisionActionfile
1.113.2.1modifypkgsrc/net/wireshark/Makefile
1.72.2.1modifypkgsrc/net/wireshark/distinfo