[SECURITY] [DSA 3277-1] wireshark security update

2015-06-0216:43:35

lists.debian.org

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.004 Low

EPSS

Percentile

72.6%

JSON

Debian Security Advisory DSA-3277-1 [email protected]
http://www.debian.org/security/ Moritz Muehlenhoff
June 02, 2015 http://www.debian.org/security/faq

Package : wireshark
CVE ID : CVE-2015-3809 CVE-2015-3810 CVE-2015-3811 CVE-2015-3812
CVE-2015-3813 CVE-2015-3814 CVE-2015-3815

Multiple vulnerabilities were discovered in the dissectors/parsers for
LBMR, web sockets, WCP, X11, IEEE 802.11 and Android Logcat, which could
result in denial of service.

For the oldstable distribution (wheezy), these problems have been fixed
in version 1.8.2-5wheezy16.

For the stable distribution (jessie), these problems have been fixed in
version 1.12.1+g01b65bf-4+deb8u1.

For the testing distribution (stretch), these problems have been fixed
in version 1.12.5+g5819e5b-1.

For the unstable distribution (sid), these problems have been fixed in
version 1.12.5+g5819e5b-1.

We recommend that you upgrade your wireshark packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian8armelwireshark-common< 1.12.1+g01b65bf-4+deb8u1wireshark-common_1.12.1+g01b65bf-4+deb8u1_armel.deb
Debian8armelwireshark-dbg< 1.12.1+g01b65bf-4+deb8u1wireshark-dbg_1.12.1+g01b65bf-4+deb8u1_armel.deb
Debian8mipselwireshark< 1.12.1+g01b65bf-4+deb8u1wireshark_1.12.1+g01b65bf-4+deb8u1_mipsel.deb
Debian8amd64wireshark-qt< 1.12.1+g01b65bf-4+deb8u1wireshark-qt_1.12.1+g01b65bf-4+deb8u1_amd64.deb
Debian8powerpclibwsutil-dev< 1.12.1+g01b65bf-4+deb8u1libwsutil-dev_1.12.1+g01b65bf-4+deb8u1_powerpc.deb
Debian8powerpcwireshark-common< 1.12.1+g01b65bf-4+deb8u1wireshark-common_1.12.1+g01b65bf-4+deb8u1_powerpc.deb
Debian8ppc64ellibwsutil4< 1.12.1+g01b65bf-4+deb8u1libwsutil4_1.12.1+g01b65bf-4+deb8u1_ppc64el.deb
Debian8arm64wireshark-common< 1.12.1+g01b65bf-4+deb8u1wireshark-common_1.12.1+g01b65bf-4+deb8u1_arm64.deb
Debian8allwireshark< 1.12.1+g01b65bf-4+deb8u1wireshark_1.12.1+g01b65bf-4+deb8u1_all.deb
Debian8amd64wireshark-dev< 1.12.1+g01b65bf-4+deb8u1wireshark-dev_1.12.1+g01b65bf-4+deb8u1_amd64.deb

OS	Version	Architecture	Package	Version	Filename
Debian	8	armel	wireshark-common	< 1.12.1+g01b65bf-4+deb8u1	wireshark-common_1.12.1+g01b65bf-4+deb8u1_armel.deb
Debian	8	armel	wireshark-dbg	< 1.12.1+g01b65bf-4+deb8u1	wireshark-dbg_1.12.1+g01b65bf-4+deb8u1_armel.deb
Debian	8	mipsel	wireshark	< 1.12.1+g01b65bf-4+deb8u1	wireshark_1.12.1+g01b65bf-4+deb8u1_mipsel.deb
Debian	8	amd64	wireshark-qt	< 1.12.1+g01b65bf-4+deb8u1	wireshark-qt_1.12.1+g01b65bf-4+deb8u1_amd64.deb
Debian	8	powerpc	libwsutil-dev	< 1.12.1+g01b65bf-4+deb8u1	libwsutil-dev_1.12.1+g01b65bf-4+deb8u1_powerpc.deb
Debian	8	powerpc	wireshark-common	< 1.12.1+g01b65bf-4+deb8u1	wireshark-common_1.12.1+g01b65bf-4+deb8u1_powerpc.deb
Debian	8	ppc64el	libwsutil4	< 1.12.1+g01b65bf-4+deb8u1	libwsutil4_1.12.1+g01b65bf-4+deb8u1_ppc64el.deb
Debian	8	arm64	wireshark-common	< 1.12.1+g01b65bf-4+deb8u1	wireshark-common_1.12.1+g01b65bf-4+deb8u1_arm64.deb
Debian	8	all	wireshark	< 1.12.1+g01b65bf-4+deb8u1	wireshark_1.12.1+g01b65bf-4+deb8u1_all.deb
Debian	8	amd64	wireshark-dev	< 1.12.1+g01b65bf-4+deb8u1	wireshark-dev_1.12.1+g01b65bf-4+deb8u1_amd64.deb