-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Sun, 12 Jun 2011 21:23:05 +0200 Source: wireshark Binary: wireshark-common wireshark tshark wireshark-dev wireshark-dbg Architecture: source amd64 Version: 1.2.11-6+squeeze2 Distribution: stable-security Urgency: high Maintainer: Balint Reczey Changed-By: Balint Reczey Description: tshark - network traffic analyzer - console version wireshark - network traffic analyzer - GTK+ version wireshark-common - network traffic analyzer - common files wireshark-dbg - network traffic analyzer - debug symbols wireshark-dev - network traffic analyzer - development tools Closes: 630159 Changes: wireshark (1.2.11-6+squeeze2) stable-security; urgency=high . * security fixes from Wireshark 1.2.16: - The X.509if dissector could crash. (CVE-2011-1590) . * security fixes from Wireshark 1.2.17 (Closes: #630159): - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Visual Networks file could crash Wireshark. (CVE-2011-2175) - David Maciejak of Fortinet's FortiGuard Labs discovered that malformed compressed capture data could crash Wireshark. (CVE-2011-2174) - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted snoop file could crash Wireshark. (CVE-2011-1959) - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Diameter dictionary file could crash Wireshark. (CVE-2011-1958) - Large/infinite loop in the DICOM dissector. (CVE-2011-1957) Checksums-Sha1: 80d392e158ebe5db876fe1e2349de2ee2a614964 1747 wireshark_1.2.11-6+squeeze2.dsc 1d69136355956f705ba63048f4c53bf527e4a672 76540 wireshark_1.2.11-6+squeeze2.debian.tar.gz a3019453ed2d0b569fed38eec2c0516dc828de51 13777432 wireshark-common_1.2.11-6+squeeze2_amd64.deb 03beda130e905eb77ab9d44b624b4f0acdf3c869 798674 wireshark_1.2.11-6+squeeze2_amd64.deb a606d0f51a6a6b30718a293d1b8b820614481833 133482 tshark_1.2.11-6+squeeze2_amd64.deb 5c12640e1de9481b91cc7180dd83d4a84c461eee 775200 wireshark-dev_1.2.11-6+squeeze2_amd64.deb edc0bf59267174d2a970bf02a02d2291cb4e71cc 15779884 wireshark-dbg_1.2.11-6+squeeze2_amd64.deb Checksums-Sha256: 9a72f1a37b045fb81f446bfedee92d7281a11df8b3051943fd504e247a68d1a6 1747 wireshark_1.2.11-6+squeeze2.dsc f393d1a056cd6b7687e7fd663324d9a5f22892e9bd6a134de5f3780910e19c9a 76540 wireshark_1.2.11-6+squeeze2.debian.tar.gz f17e8ad9d81019075e887bdd33a1c4135a5d38a35a16db65dc1d6dc9aec5e5d7 13777432 wireshark-common_1.2.11-6+squeeze2_amd64.deb a75df94a82edc362f04928015d85a8dacb7cd0482bba8b26e37092b3f449ad5e 798674 wireshark_1.2.11-6+squeeze2_amd64.deb c5a970ea9b24edbf254c85a7d063091c9120787f5cf31d4e7495e144ddf4c455 133482 tshark_1.2.11-6+squeeze2_amd64.deb c58759aa14a2a6fbc26dd4d2402559423149ecb13d0a593f16152ca1b76bbba5 775200 wireshark-dev_1.2.11-6+squeeze2_amd64.deb 128241b74457f7adb9a6dcfc9e474d37821cfd90ca7e42a298793b3df96060b9 15779884 wireshark-dbg_1.2.11-6+squeeze2_amd64.deb Files: f59592f18e885c9e551c179aa0dac3fb 1747 net optional wireshark_1.2.11-6+squeeze2.dsc bf8ea354cc5662b29ec8d7192690f118 76540 net optional wireshark_1.2.11-6+squeeze2.debian.tar.gz 8973b00728fe15902946c82ebdbeff7b 13777432 net optional wireshark-common_1.2.11-6+squeeze2_amd64.deb 6132166036d2a05a5712108a6e7ab915 798674 net optional wireshark_1.2.11-6+squeeze2_amd64.deb b202852343686f7bde27ecffba420ed0 133482 net optional tshark_1.2.11-6+squeeze2_amd64.deb f739d1e59a5cd2a2278eae1e06244be7 775200 devel optional wireshark-dev_1.2.11-6+squeeze2_amd64.deb eecd9dd83133e6bd7fd8f9c177a850ec 15779884 debug extra wireshark-dbg_1.2.11-6+squeeze2_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iEYEARECAAYFAk39kz4ACgkQ0/r2+3z8lN3AoQCgiBd4kseszJNfXA9UOj/ZixyN PvQAnRf5Mz5HuTQrA6qWNm9KfEjW18yq =7irw -----END PGP SIGNATURE-----