-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 12 Jun 2011 21:23:05 +0200 Source: wireshark Binary: wireshark-common wireshark tshark wireshark-dev wireshark-dbg Architecture: ia64 Version: 1.2.11-6+squeeze2 Distribution: squeeze-security Urgency: high Maintainer: ia64 Build Daemon (mundy) Changed-By: Balint Reczey Description: tshark - network traffic analyzer - console version wireshark - network traffic analyzer - GTK+ version wireshark-common - network traffic analyzer - common files wireshark-dbg - network traffic analyzer - debug symbols wireshark-dev - network traffic analyzer - development tools Closes: 630159 Changes: wireshark (1.2.11-6+squeeze2) stable-security; urgency=high . * security fixes from Wireshark 1.2.16: - The X.509if dissector could crash. (CVE-2011-1590) . * security fixes from Wireshark 1.2.17 (Closes: #630159): - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Visual Networks file could crash Wireshark. (CVE-2011-2175) - David Maciejak of Fortinet's FortiGuard Labs discovered that malformed compressed capture data could crash Wireshark. (CVE-2011-2174) - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted snoop file could crash Wireshark. (CVE-2011-1959) - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Diameter dictionary file could crash Wireshark. (CVE-2011-1958) - Large/infinite loop in the DICOM dissector. (CVE-2011-1957) Checksums-Sha1: 89cfb974ea1b767b3d8ae6b8fa6e436d93777407 15892434 wireshark-common_1.2.11-6+squeeze2_ia64.deb 99367a955093250a8ccc19e4b5f3b5a7d90e1aa0 1090172 wireshark_1.2.11-6+squeeze2_ia64.deb 4824e3ddc6179724549e752b10dce8083e4a4399 171156 tshark_1.2.11-6+squeeze2_ia64.deb d2d5106898f387eb7a77512ba525f0ca7579a5bf 794702 wireshark-dev_1.2.11-6+squeeze2_ia64.deb 39e17b834bae68bf06a5a17b23f8b4579de73b16 14285124 wireshark-dbg_1.2.11-6+squeeze2_ia64.deb Checksums-Sha256: e5db49995bdbf0d1610c1605aebc0b1ee1bbae0995333eb11451a0f791d5d800 15892434 wireshark-common_1.2.11-6+squeeze2_ia64.deb ea091cb2de9ad679f6dd1d70854fca27b33bd199acc89697bbaf5d424f7787dd 1090172 wireshark_1.2.11-6+squeeze2_ia64.deb 99b444e4b53f7a8a1314ffd312f025fbd3e509faecef4a47add7c5db8d40db80 171156 tshark_1.2.11-6+squeeze2_ia64.deb 5b4fdf6e36af34f14fa5f7d3087fdcd3a6d697e4a3f1daa3fef389ab4a1904a9 794702 wireshark-dev_1.2.11-6+squeeze2_ia64.deb b9d431a82446287a8dfefe05f127f26bef4a9d1143a3046711443182ca5e4ec1 14285124 wireshark-dbg_1.2.11-6+squeeze2_ia64.deb Files: c69daa65aec30269e51173102cdb7328 15892434 net optional wireshark-common_1.2.11-6+squeeze2_ia64.deb 686344e2a096c00fa4b9a5ad6c910fa5 1090172 net optional wireshark_1.2.11-6+squeeze2_ia64.deb 33fe9dd245b9f3e3c1552d3a6f3d814d 171156 net optional tshark_1.2.11-6+squeeze2_ia64.deb 4e819604797e75d859040b57cc032e8f 794702 devel optional wireshark-dev_1.2.11-6+squeeze2_ia64.deb 5e709ca2960b217e261e104589ed94a7 14285124 debug extra wireshark-dbg_1.2.11-6+squeeze2_ia64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQIcBAEBCAAGBQJN/jnAAAoJEBPGk2Lw3XjZ0fAQAI+slt1DZCN6Fqoth1vggRQb isdRDp3qcYfo6skLmp6ahk++sNtY7dW8PnIzJ79qNmCnnWn8DlUOyjzUD8olkz0V AeDHzca/ZrRLPYKYRC5zmiOl4HVp5Z71pl2NfeCUEfjZC+YxAfhiGLlRk+v8PKv+ gDARPGOMQ1uF6XAUJH/U43eeo31KHVzeESXlUOMteZ/7r9zVQBihDsj2NEJMCjBw +GehBn9o1AGtLRO88LwLrYkCytXaFqvCRNcnXNu6+kRsaSxBp0cDtfdYcEb0rtbx kK/h/dsFxT+a9C+tXUYAn0oA5eqqlakxchLh1+xsIfV4RE2PCSbtNQ8Zx4qS0XgC gKG+rBkWkM1SzFZOz03wtpPUrqI1jgEAlScYDoENA5nhdkCiU7+oj5I22U6QDVqn feoWL/XfrdqJ02sV2KzGD1rfq5rjI0fU5JRIQJTCv82ybXzFk/2G72Ztk5pkTxuN K/LF7S9X91u8CoPQvBhgZkZpYrEFfAgFoLyq66Rals52G9KseNwFIpV7vVNWFd2k 3Dp/EGH6eiSwzOcFl9b9OC1BZeJVeS+oJ96M4jEX898SfCowpvp4gHMsSRE9r+Sf L5rK1sPAx27xV0VPNcSZYpYYWNjx+qlKzMFXbAqdwvS3ivK9h9ApQCvOFmqbXxN+ BJ1pz4vcfeaDgDi1Tw8S =wVBl -----END PGP SIGNATURE-----