summaryrefslogtreecommitdiffstats
path: root/meta-networking/recipes-support/wireshark
Commit message (Collapse)AuthorAgeFilesLines
* wireshark: fix CVE-2023-6175dunfell-nextdunfellHitendra Prajapati2024-04-252-0/+247
| | | | | | | Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/3be1c99180a6fc48c34ae4bfc79bfd840b29ae3e Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Backport fix for CVE-2024-2955Ashish Sharma2024-04-252-0/+53
| | | | | | | Upstream-Status: Backport [https://gitlab.com/wireshark/wireshark/-/commit/6fd3af5e999c71df67c2cdcefb96d0dc4afa5341] Signed-off-by: Ashish Sharma <asharma@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Fix for CVE-2023-4511Vijay Anusuri2024-04-252-0/+82
| | | | | | | Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/ef9c79ae81b00a63aa8638076ec81dc9482972e9 Signed-off-by: Vijay Anusuri <vanusuri@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Backport fix for CVE-2023-1992Ashish Sharma2024-03-032-0/+63
| | | | | | | | RPCoRDMA: Frame end cleanup for global write offsets Upstream-Status: Backport from [https://gitlab.com/colin.mcinnes/wireshark/-/commit/3c8be14c827f1587da3c2b3bb0d9c04faff57413] Signed-off-by: Ashish Sharma <asharma@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: fix CVE-2024-0208 GVCP dissector crashHitendra Prajapati2024-03-032-0/+43
| | | | | | | Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/a8586fde3a6512466afb2a660538ef3fe712076b Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: fix CVE-2022-4345 multiple (BPv6, OpenFlow, and Kafka protocol) ↵vkumbhar2023-12-172-0/+53
| | | | | | | | | dissector infinite loops Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/39db474f80af87449ce0f034522dccc80ed4153f Signed-off-by: Vivek Kumbhar <vkumbhar@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Fix CVE-2022-0585-CVE-2023-2879Hitendra Prajapati2023-12-172-0/+94
| | | | | | | Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/8d3c2177793e900cfc7cfaac776a2807e4ea289f && https://gitlab.com/wireshark/wireshark/-/commit/118815ca7c9f82c1f83f8f64d9e0e54673f31677 Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Fix CVE-2023-3649Hitendra Prajapati2023-11-122-0/+232
| | | | | | | Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/75e0ffcb42f3816e5f2fdef12f3c9ae906130b0c Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Fix CVE-2023-2906Hitendra Prajapati2023-09-192-0/+39
| | | | | | | Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/44dc70cc5aadca91cb8ba3710c59c3651b7b0d4d Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Fix CVE-2023-0667 & CVE-2023-0668Hitendra Prajapati2023-07-144-0/+255
| | | | | | | | | Backport fixes for: * CVE-2023-0667 - Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/35418a73f7c9cefebe392b1ea0f012fccaf89801 && https://gitlab.com/wireshark/wireshark/-/commit/85fbca8adb09ea8e1af635db3d92727fbfa1e28a * CVE-2023-0668 - Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/c4f37d77b29ec6a9754795d0efb6f68d633728d9 Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Fix Multiple CVEsHitendra Prajapati2023-07-145-2/+382
| | | | | | | | | | | Backport fixes for: * CVE-2023-2855 - Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/0181fafb2134a177328443a60b5e29c4ee1041cb * CVE-2023-2856 - Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/db5135826de3a5fdb3618225c2ff02f4207012ca * CVE-2023-2858 - Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/cb190d6839ddcd4596b0205844f45553f1e77105 * CVE-2023-2952 - Upstream-Status: Backport from https://gitlab.com/wireshark/wireshark/-/commit/e18d0e369729b0fff5f76f41cbae67e97c2e52e5 Signed-off-by: Hitendra Prajapati <hprajapati@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Update to 3.2.18Armin Kuster2022-01-262-2/+25
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Source: wireshark.org MR: 114425, 114409, 114441, 114269, 114417, 114311, 114449 Type: Security Fix Disposition: Backport from wireshark.org ChangeID: 8663cdebb2f10ee84817e5199fa3be0acb715af9 Description: This is a bugfix only update. Addresses these CVES: wnpa-sec-2021-07 Bluetooth DHT dissector crash. Issue 17651. CVE-2021-39929. wnpa-sec-2021-09 Bluetooth SDP dissector crash. Issue 17635. CVE-2021-39925. wnpa-sec-2021-10 Bluetooth DHT dissector large loop. Issue 17677. CVE-2021-39924. wnpa-sec-2021-11 PNRP dissector large loop. Issue 17684. CVE-2021-39920, CVE-2021-39923. wnpa-sec-2021-12 C12.22 dissector crash. Issue 17636. CVE-2021-39922. wnpa-sec-2021-13 IEEE 802.11 dissector crash. Issue 17704. CVE-2021-39928. wnpa-sec-2021-14 Modbus dissector crash. Issue 17703. CVE-2021-39921. Signed-off-by: Armin Kuster <akuster@mvista.com> --- V2] Fixes: /build/run/lemon: Exec format error revert "cmake: lemon: fix path to internal lemon tool" so the wireshark-native version is instead. Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: update to 3.2.15Armin Kuster2021-07-251-1/+1
| | | | | | | | | | | | | | | | | | | | | Source: Wireshark.org MR: 109612, 110462, 112069 Type: Security Fix Disposition: Backport from wireshark.org ChangeID: 40f9f8ac2431f32680d4817607badbbe44875260 Description: Bug fix only update: see: https://www.wireshark.org/docs/relnotes/wireshark-3.2.15.html https://www.wireshark.org/docs/relnotes/wireshark-3.2.14.html https://www.wireshark.org/docs/relnotes/wireshark-3.2.13.html https://www.wireshark.org/docs/relnotes/wireshark-3.2.12.html https://www.wireshark.org/docs/relnotes/wireshark-3.2.11.html includes: CVE-2021-22191, CVE-2021-22207, CVE-2021-22235 Signed-off-by: Armin Kuster <akuster@mvista.com>
* wireshark: Several securtiy fixesArmin Kuster2021-01-121-1/+1
| | | | | | | | | | | | | | | | | | | | | | | Source: Wireshark.org MR: 106181, 106696, 107655, 107673, 107682 Type: Security Fix Disposition: Backport from wireshark.org ChangeID: 57df6ac3b11aabd96e6aec728501ce7988bc176a Description: Bugfix only update including these cves: 3.2.8 CVE-2020-26575 CVE-2020-28030 3.2.9 CVE-2020-26418 CVE-2020-26421 CVE-2020-26420 Signed-off-by: Armin Kuster <akuster@mvista.com> (cherry picked from commit a10ea62a1c9c7b0c4810f2e4ef0dcc6f75b0ca6b) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: upgrade 3.2.6 -> 3.2.7Zang Ruochen2020-11-091-1/+1
| | | | | | | Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 47821db8ed0dc81e84d5ba6b873dc14d50f85e07) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: upgrade 3.2.5 -> 3.2.6Zang Ruochen2020-11-091-1/+1
| | | | | | | Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 88df26ab74a5d1274127f83b854da2d5747b9952) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: Update to 3.2.5Armin Kuster2020-07-121-2/+1
| | | | | | | | | | | | | | | | | | | | | Source: wireshark.org MR: 104620 Type: Security Fix Disposition: Backport from wireshark.org ChangeID: 64e3701e4d6bd53972c22c49d655556e6f37e461 Description: Affects: 3.2.0 to 3.2.4 Includes: CVE-2020-15466 For more info see: https://www.wireshark.org/docs/relnotes/wireshark-3.2.5.html Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 9019ceb2ccfd32789b7bc680269b3af234ebd397) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: upgrade 3.2.2 -> 3.2.4Zang Ruochen2020-06-121-2/+2
| | | | | | | Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit 8a4039c61296801dc7f9d6f1badd9310acadf2b8) Signed-off-by: Armin Kuster <akuster808@gmail.com>
* wireshark: poppler: prevent PACKAGECONFIG change based on different layersMingde (Matthew) Zeng2020-04-081-1/+1
| | | | | | | | | | As per discussed in a previous email under the subject "Regarding poppler auto PACKAGECONFIG when qt5-layer exists", adding a layer but not using it should not change PACKAGECONFIG automatically. It may result unexpected error. Signed-off-by: Matthew Zeng <matthew.zeng@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: Inherit mime and mime-xdgKhem Raj2020-03-091-1/+1
| | | | | | | | Fixes ERROR: QA Issue: package contains mime types but does not inherit mime: wireshark path '/work/cortexa7t2hf-neon-vfpv4-yoe-linux-gnueabi/wireshark/1_3.2.2-r0/packages-split/wireshark/usr/share/mime/packages/wireshark.xml' [mime] ERROR: QA Issue: package contains desktop file with key 'MimeType' but does not inhert mime-xdg: wireshark path '/work/cortexa7t2hf-neon-vfpv4-yoe-linux-gnueabi/wireshark/1_3.2.2-r0/packages-split/wireshark/usr/share/applications/wireshark.desktop' [mime-xdg] Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 3.2.1 -> 3.2.2Zheng Ruoqin2020-03-041-2/+2
| | | | | Signed-off-by: Zheng Ruoqin <zhengrq.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 3.2.0 -> 3.2.1Wang Mingyu2020-02-111-2/+2
| | | | | Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: Enable plugins when enabling qt5Khem Raj2020-01-091-1/+1
| | | | | | | | | | | | | | | | plugins tab and about dialog have created dependency with commit[1] this fails to build when qt5 is in bblayers Fixes wireshark-3.2.0/ui/qt/about_dialog.cpp:137:29: error: 'plugins_add_description' was not declared in this scope; did you mean 'plugins_get_descriptions'? 137 | extcap_get_descriptions(plugins_add_description, &plugin_data); | ^~~~~~~~~~~~~~~~~~~~~~~ | plugins_get_descriptions [1] https://github.com/wireshark/wireshark/commit/5dfde7ff83a35bb7186cd05ce61f4b139ab01203 Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 3.0.7 -> 3.2.0Wang Mingyu2020-01-071-2/+2
| | | | | Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 3.0.6 -> 3.0.7Wang Mingyu2019-12-101-2/+2
| | | | | Signed-off-by: Wang Mingyu <wangmy@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 3.0.3 -> 3.0.6Zheng Ruoqin2019-11-011-2/+2
| | | | | Signed-off-by: Zheng Ruoqin <zhengrq.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: fix qt5 buildGeorge McCollister2019-10-041-2/+4
| | | | | | | | | | | | | | | | | | | | | | Add qttools-native to PACKAGECONFIG[qt5] DEPENDS to resolve missing Qt5LinguistTools build error. Add qtmultimedia to PACKAGECONFIG[qt5] DEPENDS to resolve missing Qt5Multimedia build error. Add qtsvg to PACKAGECONFIG[qt5] DEPENDS to resolve missing Qt5Svg build error. Inherit cmake_qt5 when qt5 is in PACKAGECONFIG to resolve get_target_property() called with non-existent target "Qt5::qmake" build error. Automatically add qt5 to PACKAGECONFIG when meta-qt5 is in the build since adding qt5 via a .bbappend won't satisfy the conditional inherit cmake_qt5. The poppler recipe does exactly this. Signed-off-by: George McCollister <george.mccollister@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: remove restriction to ARM ISAS. Lockwood-Childs2019-09-191-2/+0
| | | | | | | | | The restriction to ARM instruction set came in the original wireshark recipe, which was 2 major versions ago (and also a few toolchains ago). Wireshark 3.x seems to be building fine allowing thumb instructions, at least on cortexa9t2hf. Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: Use an upstream URL that stays valid longerAdrian Bunk2019-08-051-1/+1
| | | | | Signed-off-by: Adrian Bunk <bunk@stusta.de> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 3.0.2 -> 3.0.3Zang Ruochen2019-07-221-2/+2
| | | | | Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 3.0.1 -> 3.0.2Zang Ruochen2019-07-101-2/+2
| | | | | | | -Upgrade from wireshark_3.0.1.bb to wireshark_3.0.2.bb. Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade 3.0.0 -> 3.0.1Zang Ruochen2019-04-111-2/+2
| | | | | | | -Upgrade from wireshark_3.0.0.bb to wireshark_3.0.1.bb. Signed-off-by: Zang Ruochen <zangrc.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade to 3.0.0Oleksandr Kravchuk2019-03-102-41/+1
| | | | | Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade to 3.0.0Oleksandr Kravchuk2019-03-071-7/+5
| | | | | Signed-off-by: Oleksandr Kravchuk <open.source@oleksandr-kravchuk.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: update to 2.6.6Armin Kuster2019-01-131-2/+2
| | | | | | | | | | | | | | includes: wnpa-sec-2019-01 The 6LoWPAN dissector could crash. Bug 15217. CVE-2019-5716. wnpa-sec-2019-02 The P_MUL dissector could crash. Bug 15337. CVE-2019-5717. wnpa-sec-2019-03 The RTSE dissector and other dissectors could crash. Bug 15373. CVE-2019-5718. wnpa-sec-2019-04 The ISAKMP dissector could crash. Bug 15374. CVE-2019-5719. For more info see: https://www.wireshark.org/docs/relnotes/wireshark-2.6.6.html Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: upgrade to 2.6.5Hong Liu2018-12-041-2/+2
| | | | | | | 1.Upgrade wireshark from 2.6.4 to 2.6.5. Signed-off-by: Hong Liu <hongl.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: update to 2.6.4Yi Zhao2018-10-152-27/+3
| | | | | | | | | | | | | | | | | | * Update SRC_URI In https://1.as.dl.wireshark.org/src/, it only keep the latest release. Switch to https://1.as.dl.wireshark.org/src/all-versions/ to make sure the old release can be found. * Drop patch fix-fatal-no-names-found-git-error.patch Actually this piece of code should not be invoked when build from tarball. But in previous releases the code will be performed when building native package if host with rpmbuild and git installed, which will cause a configure error. This issue has been fixed in 2.6.4: commit 4fbc017e80d6d11f8c26cad12d883fd6da9d3504 CMake: Fix build from tarball under certain conditions Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark_2.6.2.bb: Add depedency to bison-nativeManjukumar Matha2018-08-191-1/+1
| | | | | | | | | | | | | | | | Fix the following do_configure failure | CMake Error at wireshark-native/1_2.6.2-r0/recipe-sysroot-native/usr/share/cmake-3.11/Modules/FindPackageHandleStandardArgs.cmake:137 (message): | Could NOT find YACC (missing: YACC_EXECUTABLE) | Call Stack (most recent call first): Add depedency to bison-native which provides byacc to prevent the above failure Signed-off-by: Manjukumar Matha <manjukumar.harthikote-matha@xilinx.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark_2.6.2.bb: Fix the configure error on git describeManjukumar Matha2018-08-112-0/+24
| | | | | | | | | | | | | | | This patch fixes the following error during do_configure task | fatal: No names found, cannot describe anything. | CMake Error at CMakeLists.txt:3086 (string): | string begin index: 1 is out of range 0 - 0 | Using --always is a fallback for fetching uniquely abbreviated commit object Signed-off-by: Manjukumar Matha <manjukumar.harthikote-matha@xilinx.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: update to 2.6.2Armin Kuster2018-08-021-10/+24
| | | | | | | | | | | | | | | | | | | | | | | | | [v3] Get wireshark-gtk building again split tshark, wireshark-gtk into their own pkgs [v2] Fix native build, lemon is the only one needed natively [v1] includes security fixes: wnpa-sec-2018-34 BGP dissector large loop. Bug 13741. CVE-2018-14342. wnpa-sec-2018-35 ISMP dissector crash. Bug 14672. CVE-2018-14344. wnpa-sec-2018-36 Multiple dissectors could crash. Bug 14675. CVE-2018-14340. wnpa-sec-2018-37 ASN.1 BER dissector crash. Bug 14682. CVE-2018-14343. wnpa-sec-2018-38 MMSE dissector infinite loop. Bug 14738. CVE-2018-14339. wnpa-sec-2018-39 DICOM dissector crash. Bug 14742. CVE-2018-14341. wnpa-sec-2018-40 Bazaar dissector infinite loop. Bug 14841. CVE-2018-14368. wnpa-sec-2018-41 HTTP2 dissector crash. Bug 14869. CVE-2018-14369. wnpa-sec-2018-42 CoAP dissector crash. Bug 14966. CVE-2018-14367. Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: Update to 2.6 releaseKhem Raj2018-06-144-126/+109
| | | | | | | Add a native version to provide certain utilities needed during cross build Strip rpaths which cmake seems to be enforcing for no reason Signed-off-by: Khem Raj <raj.khem@gmail.com>
* wireshark: update to 2.4.6 and add upstream checkArmin Kuster2018-04-251-3/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | [v2] inherit upstream-version-is-even instead of creating my own regex Security fixes: The following vulnerabilities have been fixed: * [1]wnpa-sec-2018-15 The MP4 dissector could crash. ([2]Bug 13777) * [3]wnpa-sec-2018-16 The ADB dissector could crash. ([4]Bug 14460) * [5]wnpa-sec-2018-17 The IEEE 802.15.4 dissector could crash. ([6]Bug 14468) * [7]wnpa-sec-2018-18 The NBAP dissector could crash. ([8]Bug 14471) * [9]wnpa-sec-2018-19 The VLAN dissector could crash. ([10]Bug 14469) * [11]wnpa-sec-2018-20 The LWAPP dissector could crash. ([12]Bug 14467) * [13]wnpa-sec-2018-21 The TCP dissector could crash. ([14]Bug 14472) * [15]wnpa-sec-2018-22 The CQL dissector could to into an infinite loop. ([16]Bug 14530) * [17]wnpa-sec-2018-23 The Kerberos dissector could crash. ([18]Bug 14576) * [19]wnpa-sec-2018-24 Multiple dissectors and other modules could leak memory. The TN3270 ([20]Bug 14480), ISUP ([21]Bug 14481), LAPD ([22]Bug 14482), SMB2 ([23]Bug 14483), GIOP ([24]Bug 14484), ASN.1 ([25]Bug 14485), MIME multipart ([26]Bug 14486), H.223 ([27]Bug 14487), and PCP ([28]Bug 14488) dissectors were susceptible along with Wireshark and TShark Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to new 2.4.5 seriesArmin Kuster2018-04-062-13/+66
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | [v2] Fix epan/.libs/libwireshark.so: error: undefined reference to 'gpg_strerror' and update to 2.4.5. includes: wnpa-sec-2018-05 The IEEE 802.11 dissector could crash. Bug 14442, CVE-2018-7335 wnpa-sec-2018-06 Multiple dissectors could go into large infinite loops. All ASN.1 BER dissectors (Bug 14444), along with the DICOM (Bug 14411), DMP (Bug 14408), LLTD (Bug 14419), OpenFlow (Bug 14420), RELOAD (Bug 14445), RPCoRDMA (Bug 14449), RPKI-Router (Bug 14414), S7COMM (Bug 14423), SCCP (Bug 14413), Thread (Bug 14428), Thrift (Bug 14379), USB (Bug 14421), and WCCP (Bug 14412) dissectors were susceptible. wnpa-sec-2018-07 The UMTS MAC dissector could crash. Bug 14339, CVE-2018-7334 wnpa-sec-2018-08 The DOCSIS dissector could crash. Bug 14446, CVE-2018-7337 wnpa-sec-2018-09 The FCP dissector could crash. Bug 14374, CVE-2018-7336 wnpa-sec-2018-10 The SIGCOMP dissector could crash. Bug 14398, CVE-2018-7320 wnpa-sec-2018-11 The pcapng file parser could crash. Bug 14403, CVE-2018-7420 wnpa-sec-2018-12 The IPMI dissector could crash. Bug 14409, CVE-2018-7417 wnpa-sec-2018-13 The SIGCOMP dissector could crash. Bug 14410, CVE-2018-7418 wnpa-sec-2018-14 The NBAP disssector could crash. Bug 14443, CVE-2018-7419 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: Update Package to 2.2.12Armin Kuster2018-04-061-2/+2
| | | | | | | | | | | | | | | | Includes: wnpa-sec-2018-01, Multiple dissectors could crash. (Bug 14253) CVE-2018-5336 wnpa-sec-2018-02, The MRDISC dissector could crash. (Bug 14299, Bug 13707) CVE-2017-17997 wnpa-sec-2018-03, The IxVeriWave file parser could crash. (Bug 14297) CVE-2018-5334 wnpa-sec-2018-04, The WCP dissector could crash. (Bug 14251) CVE-2018-5335 Full release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.12.html Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: Update to 2.2.11Armin Kuster2018-01-081-3/+3
| | | | | | | | | | | | | | | | | | | | | | changed --with-ssh to --with-libssh=DIR includes: wnpa-sec-2017-47 : CVE-2017-17084 The IWARP_MPA dissector could crash. (Bug 14236) wnpa-sec-2017-48 : CVE-2017-17083 The NetBIOS dissector could crash. (Bug 14249) wnpa-sec-2017-49 : CVE-2017-17085 The CIP Safety dissector could crash. (Bug 14250) release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.2.11.html Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to 2.2.10Armin Kuster2017-10-161-2/+2
| | | | | | | | | | | | | | The following vulnerabilities have been fixed: * [1]wnpa-sec-2017-42 BT ATT dissector crash ([2]Bug 14049) [3]CVE-2017-15192 * [4]wnpa-sec-2017-43 MBIM dissector crash ([5]Bug 14056) [6]CVE-2017-15193 * [7]wnpa-sec-2017-44 DMP dissector crash ([8]Bug 14068) [9]CVE-2017-15191 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to 2.2.9Armin Kuster2017-09-121-3/+3
| | | | | | | | | | | | | | | | | | Change LIC_FILES_CHKSUM from README.linux to COPYING as COPYING contains the license info 2.2.9 security fixes: wnpa-sec-2017-38 MSDP dissector infinite loop (Bug 13933) CVE-2017-13767 wnpa-sec-2017-39 Profinet I/O buffer overrun (Bug 13847) CVE-2017-13766 wnpa-sec-2017-41 IrCOMM dissector buffer overrun (Bug 13929) CVE-2017-13765 Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: 2.2.7 -> 2.2.8Kai Kang2017-09-121-2/+2
| | | | | | Signed-off-by: Kai Kang <kai.kang@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: Upgrade to 2.2.7fan.xin2017-06-281-2/+2
| | | | | | | | Upgrade wireshark from 2.2.6 to 2.2.7 Signed-off-by: Fan Xin <fan.xin@jp.fujitsu.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>
* wireshark: update to 2.2.6Armin Kuster2017-04-251-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | The following vulnerabilities have been fixed: * [1]wnpa-sec-2017-12 IMAP dissector crash ([2]Bug 13466) [3]CVE-2017-7703 * [4]wnpa-sec-2017-13 WBMXL dissector infinite loop ([5]Bug 13477) [6]CVE-2017-7702 * [7]wnpa-sec-2017-14 NetScaler file parser infinite loop ([8]Bug 13478) [9]CVE-2017-7700 * [10]wnpa-sec-2017-15 RPCoRDMA dissector infinite loop ([11]Bug 13558) [12]CVE-2017-7705 * [13]wnpa-sec-2017-16 BGP dissector infinite loop ([14]Bug 13557) [15]CVE-2017-7701 * [16]wnpa-sec-2017-17 DOF dissector infinite loop ([17]Bug 13453) [18]CVE-2017-7704 * [19]wnpa-sec-2017-18 PacketBB dissector crash ([20]Bug 13559) * [21]wnpa-sec-2017-19 SLSK dissector long loop ([22]Bug 13576) * [23]wnpa-sec-2017-20 SIGCOMP dissector infinite loop ([24]Bug 13578) * [25]wnpa-sec-2017-21 WSP dissector infinite loop ([26]Bug 13581) Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com> Signed-off-by: Joe MacDonald <joe_macdonald@mentor.com>