20836 2009-07-21 08:46:20 +0400 Multiple vulnerabilities in Wireshark:CVE-2009-2559, CVE-2009-2560, CVE-2009-2561, CVE-2009-2562, CVE-2009-2563 2010-01-29 12:17:41 +0300 1 1 4 Development Sisyphus wireshark-base unstable all Linux CLOSED FIXED http://www.wireshark.org/security/wnpa-sec-2009-04.html security P3 blocker --- 1 crux rider ldv rider qa-sisyphus oldest_to_newest 94981 0 crux 2009-07-21 08:46:20 +0400 Wireshark 1.2.1 fixes the following vulnerabilities: * The IPMI dissector could overrun a buffer. (Bug 3559) Versions affected: 1.2.0 * The AFS dissector could crash. (Bug 3564) Versions affected: 0.9.2 to 1.2.0 * The Infiniband dissector could crash on some platforms. Versions affected: 1.0.6 to 1.2.0 * The Bluetooth L2CAP dissector could crash. (Bug 3572) Versions affected: 1.2.0 * The RADIUS dissector could crash. (Bug 3578) Versions affected: 1.2.0 * The MIOP dissector could crash. (Bug 3652) Versions affected: 1.2.0 * The sFlow dissector could use excessive CPU and memory. (Bug 3570) Versions affected: 1.2.0 94984 1 ab 2009-07-21 09:46:53 +0400 Ok. Вечером. 96861 2 ldv 2009-08-19 18:04:39 +0400 Вечером какого дня? 106090 3 ldv 2010-01-28 15:11:37 +0300 Wireshark 1.2.6 is now available. http://www.wireshark.org/security/wnpa-sec-2010-02.html http://www.wireshark.org/security/wnpa-sec-2009-09.html http://www.wireshark.org/security/wnpa-sec-2009-07.html http://www.wireshark.org/security/wnpa-sec-2009-06.html 106091 4 rider 2010-01-28 15:13:15 +0300 Мне кажется, что пакету wireshark требуется другой мейнтейнер. Саш, повесь его на @everybody или @nobody 106100 5 ab 2010-01-28 17:21:58 +0300 ок, вечером. 106108 6 ab 2010-01-28 21:17:04 +0300 done 106109 7 ab 2010-01-28 21:18:04 +0300 Перевожу на Антона. 106125 8 repository-robot 2010-01-29 12:17:41 +0300 wireshark-1.2.6-alt1 -> sisyphus: * Thu Jan 28 2010 Anton Farygin <rider@altlinux> 1.2.6-alt1 - new version, multiple vulnerabilities fixed by upstream (closes #20836)