[Buildroot] [PATCH] package/wireshark: security bump to version 2.6.5

Thomas Petazzoni thomas.petazzoni at bootlin.com
Mon Dec 31 13:31:55 UTC 2018


Hello,

On Mon, 31 Dec 2018 09:30:21 +0100, Peter Korsgaard wrote:
> The following vulnerabilities have been fixed:
> 
> - wnpa-sec-2018-51 The Wireshark dissection engine could crash. Bug 14466. CVE-2018-19625.
> - wnpa-sec-2018-52 The DCOM dissector could crash. Bug 15130. CVE-2018-19626.
> - wnpa-sec-2018-53 The LBMPDM dissector could crash. Bug 15132. CVE-2018-19623.
> - wnpa-sec-2018-54 The MMSE dissector could go into an infinite loop. Bug 15250. CVE-2018-19622.
> - wnpa-sec-2018-55 The IxVeriWave file parser could crash. Bug 15279. CVE-2018-19627.
> - wnpa-sec-2018-56 The PVFS dissector could crash. Bug 15280. CVE-2018-19624.
> - wnpa-sec-2018-57 The ZigBee ZCL dissector could crash. Bug 15281. CVE-2018-19628.
> 
> Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
> ---
>  package/wireshark/wireshark.hash | 4 ++--
>  package/wireshark/wireshark.mk   | 2 +-
>  2 files changed, 3 insertions(+), 3 deletions(-)

Applied to master, thanks.

Thomas
-- 
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com


More information about the buildroot mailing list