-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 12 Jun 2011 21:23:05 +0200 Source: wireshark Binary: wireshark-common wireshark tshark wireshark-dev wireshark-dbg Architecture: i386 Version: 1.2.11-6+squeeze2 Distribution: squeeze-security Urgency: high Maintainer: i386 Build Daemon Changed-By: Balint Reczey Description: tshark - network traffic analyzer - console version wireshark - network traffic analyzer - GTK+ version wireshark-common - network traffic analyzer - common files wireshark-dbg - network traffic analyzer - debug symbols wireshark-dev - network traffic analyzer - development tools Closes: 630159 Changes: wireshark (1.2.11-6+squeeze2) stable-security; urgency=high . * security fixes from Wireshark 1.2.16: - The X.509if dissector could crash. (CVE-2011-1590) . * security fixes from Wireshark 1.2.17 (Closes: #630159): - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Visual Networks file could crash Wireshark. (CVE-2011-2175) - David Maciejak of Fortinet's FortiGuard Labs discovered that malformed compressed capture data could crash Wireshark. (CVE-2011-2174) - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted snoop file could crash Wireshark. (CVE-2011-1959) - Huzaifa Sidhpurwala of the Red Hat Security Response Team discovered that a corrupted Diameter dictionary file could crash Wireshark. (CVE-2011-1958) - Large/infinite loop in the DICOM dissector. (CVE-2011-1957) Checksums-Sha1: 7d4b6bd3932f542e7fd6dd16059ea95f74953bb9 11706822 wireshark-common_1.2.11-6+squeeze2_i386.deb b71bf18e4dbc47d9a5e4930bb24ebe75d9687b96 739362 wireshark_1.2.11-6+squeeze2_i386.deb fb1ffc71078adb7bdf0d13041180545acb5ac020 128638 tshark_1.2.11-6+squeeze2_i386.deb a964d7bb5e26f43f5e784261c5cc3f5285430b70 795052 wireshark-dev_1.2.11-6+squeeze2_i386.deb 69e19ca8232f6c5c22c3e25241ddfa0493de279f 14689300 wireshark-dbg_1.2.11-6+squeeze2_i386.deb Checksums-Sha256: 24a6c352d193264ed0292d45a2222e7e32c01ca52175c77f8058ea3d15144163 11706822 wireshark-common_1.2.11-6+squeeze2_i386.deb 7bb7168241ebd60e330e52f6695ac6100acec84139792077414d0d176ebd15fe 739362 wireshark_1.2.11-6+squeeze2_i386.deb e2d114f279250cd10f0eed44caf3f58c39e0cf0f730aaf9422136c257572cd60 128638 tshark_1.2.11-6+squeeze2_i386.deb 39c0f4137226d27137a4e98d9fd1b12814d5acdaa00036b80882f80d755e5f41 795052 wireshark-dev_1.2.11-6+squeeze2_i386.deb 2706b5c21ece2974ecfd152479b9be2abcc459ffa111631d6134628a05b61831 14689300 wireshark-dbg_1.2.11-6+squeeze2_i386.deb Files: 999381ec24a48ed0a72310b5e6f112f5 11706822 net optional wireshark-common_1.2.11-6+squeeze2_i386.deb a19b24ebf4c6edb632655dc7d9826310 739362 net optional wireshark_1.2.11-6+squeeze2_i386.deb 36e276f5a5a05f187c7c34f14ab5a968 128638 net optional tshark_1.2.11-6+squeeze2_i386.deb 698293929bb1d95a1dc36c97344c1af5 795052 devel optional wireshark-dev_1.2.11-6+squeeze2_i386.deb 3984d94902db328ac7b89e772658fd7e 14689300 debug extra wireshark-dbg_1.2.11-6+squeeze2_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQIcBAEBCAAGBQJN/jqFAAoJEHY75GREw+rHg+oP/1AjtgV+Dh9KNm73Gt1S2xOx tDsR2kDa3imDdWTKxjP8GbM5Ae99DZmh7CqkHsSjd3wTsiH8GHz5ftWLgdNQo3m2 KSe7DvEkFq4xyBFbj6WeyU93/AXH9V6mD/IJ2QLEAw6oiM0GQGTmVy77E/CYtVuI OsqFWrweO3mzm0VGlVvrfzSgQTrtxTQcytPkBY6Kd8JIfXPJrpdkmCAWaLFPgtzL HKVWViFeeUile2vjcz5lYekJQn0OVCelBmMIHKWgSESpUJRYXCHyuu+glfi/Euh6 Rj7EtuQls0nIjoqVx9BjRLpg2zS8su3Rr5eBX7AqOtlLxDLH56XOELI5l+PNJr8B PHuPjOgT4YO2GwpS6MyP90LVgr4fa14WBDoX3a/moTSrekQdPseq8wN+3gd0ZYaU lGqwBJjO9xkdQyAAANRzYljFMoT7lrvRXe6LG+AWEzurZcEqYXLbE5bVYaZe/LpZ 2xDEE0gxc230Fr+KmVCQI/CfeU+cty9LjrLbYVqcYH4+ZsOoJDotfiv5PLiT6a1B FPaj5Mi7D9B2n5AKvsPg8++Nwl1gwgq6cpMiENR+8o0GFMl7hvGAzffcN/qwTZN2 boDg/3gz0nDpTQdhCUHEG5ZA92HnqJs7TMGfwDNY3sQDp20XsbohXgKqb/ZlbZ5t p7JD3oLcKRqowRmHMevV =yAol -----END PGP SIGNATURE-----