Debian Bug report logs -
#926718
wireshark: CVE-2019-10894 CVE-2019-10895 CVE-2019-10896 CVE-2019-10899 CVE-2019-10901 CVE-2019-10902 CVE-2019-10903
Reported by: Salvatore Bonaccorso <carnil@debian.org>
Date: Tue, 9 Apr 2019 15:09:02 UTC
Severity: important
Tags: security, upstream
Found in versions wireshark/2.6.7-1~deb9u1, wireshark/2.6.7-1
Fixed in version wireshark/2.6.8-1
Done: Balint Reczey <rbalint@ubuntu.com>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, carnil@debian.org, team@security.debian.org, team@security.debian.org, Balint Reczey <rbalint@ubuntu.com>:
Bug#926718; Package src:wireshark.
(Tue, 09 Apr 2019 15:09:04 GMT) (full text, mbox, link).
Acknowledgement sent
to Salvatore Bonaccorso <carnil@debian.org>:
New Bug report received and forwarded. Copy sent to carnil@debian.org, team@security.debian.org, team@security.debian.org, Balint Reczey <rbalint@ubuntu.com>.
(Tue, 09 Apr 2019 15:09:04 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Source: wireshark
Version: 2.6.7-1
Severity: important
Tags: security upstream
Justification: user security hole
Control: found -1 2.6.7-1~deb9u1
Hi,
The following vulnerabilities were published for wireshark.
CVE-2019-10894[0]:
| In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API
| dissector could crash. This was addressed in epan/dissectors/packet-
| gssapi.c by ensuring that a valid dissector is called.
CVE-2019-10895[1]:
| In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler
| file parser could crash. This was addressed in wiretap/netscaler.c by
| improving data validation.
CVE-2019-10896[2]:
| In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DOF
| dissector could crash. This was addressed in epan/dissectors/packet-
| dof.c by properly handling generated IID and OID bytes.
CVE-2019-10899[3]:
| In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC
| dissector could crash. This was addressed in epan/dissectors/packet-
| srvloc.c by preventing a heap-based buffer under-read.
CVE-2019-10901[4]:
| In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS
| dissector could crash. This was addressed in epan/dissectors/packet-
| ldss.c by handling file digests properly.
CVE-2019-10902[5]:
| In Wireshark 3.0.0, the TSDNS dissector could crash. This was
| addressed in epan/dissectors/packet-tsdns.c by splitting strings
| safely.
CVE-2019-10903[6]:
| In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC
| SPOOLSS dissector could crash. This was addressed in epan/dissectors
| /packet-dcerpc-spoolss.c by adding a boundary check.
If you fix the vulnerabilities please also make sure to include the
CVE (Common Vulnerabilities & Exposures) ids in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2019-10894
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10894
[1] https://security-tracker.debian.org/tracker/CVE-2019-10895
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10895
[2] https://security-tracker.debian.org/tracker/CVE-2019-10896
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10896
[3] https://security-tracker.debian.org/tracker/CVE-2019-10899
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10899
[4] https://security-tracker.debian.org/tracker/CVE-2019-10901
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10901
[5] https://security-tracker.debian.org/tracker/CVE-2019-10902
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10902
[6] https://security-tracker.debian.org/tracker/CVE-2019-10903
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10903
Regards,
Salvatore
Marked as found in versions wireshark/2.6.7-1~deb9u1.
Request was from Salvatore Bonaccorso <carnil@debian.org>
to submit@bugs.debian.org.
(Tue, 09 Apr 2019 15:09:04 GMT) (full text, mbox, link).
Reply sent
to Balint Reczey <rbalint@ubuntu.com>:
You have taken responsibility.
(Thu, 11 Apr 2019 12:21:03 GMT) (full text, mbox, link).
Notification sent
to Salvatore Bonaccorso <carnil@debian.org>:
Bug acknowledged by developer.
(Thu, 11 Apr 2019 12:21:03 GMT) (full text, mbox, link).
Message #12 received at 926718-close@bugs.debian.org (full text, mbox, reply):
Source: wireshark
Source-Version: 2.6.8-1
We believe that the bug you reported is fixed in the latest version of
wireshark, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 926718@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Balint Reczey <rbalint@ubuntu.com> (supplier of updated wireshark package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@ftp-master.debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Wed, 10 Apr 2019 15:58:16 +0200
Source: wireshark
Binary: wireshark-common wireshark wireshark-qt wireshark-gtk tshark wireshark-dev wireshark-doc libwireshark11 libwsutil9 libwsutil-dev libwscodecs2 libwireshark-data libwireshark-dev libwiretap8 libwiretap-dev
Architecture: source
Version: 2.6.8-1
Distribution: unstable
Urgency: medium
Maintainer: Balint Reczey <rbalint@ubuntu.com>
Changed-By: Balint Reczey <rbalint@ubuntu.com>
Description:
libwireshark-data - network packet dissection library -- data files
libwireshark-dev - network packet dissection library -- development files
libwireshark11 - network packet dissection library -- shared library
libwiretap-dev - network packet capture library -- development files
libwiretap8 - network packet capture library -- shared library
libwscodecs2 - network packet dissection codecs library -- shared library
libwsutil-dev - network packet dissection utilities library -- development files
libwsutil9 - network packet dissection utilities library -- shared library
tshark - network traffic analyzer - console version
wireshark - network traffic analyzer - meta-package
wireshark-common - network traffic analyzer - common files
wireshark-dev - network traffic analyzer - development tools
wireshark-doc - network traffic analyzer - documentation
wireshark-gtk - network traffic analyzer - GTK+ version
wireshark-qt - network traffic analyzer - Qt version
Closes: 926718
Changes:
wireshark (2.6.8-1) unstable; urgency=medium
.
* New upstream version 2.6.8
- security fixes (Closes: #926718):
- NetScaler file parser crash. (CVE-2019-10895)
- SRVLOC dissector crash. (CVE-2019-10899)
- GSS-API dissector crash. (CVE-2019-10894)
- DOF dissector crash. (CVE-2019-10896)
- LDSS dissector crash. (CVE-2019-10901)
- DCERPC SPOOLSS dissector crash. (CVE-2019-10903)
Checksums-Sha1:
70bbc4a8e87fb33d7e3e18f2d789b896fe6cdb40 3523 wireshark_2.6.8-1.dsc
2ef14fdd3f4e6390015dc3b1552f111c0727236c 28708004 wireshark_2.6.8.orig.tar.xz
efbe6319827cf08abf5006ad66a129d130e73bb1 70956 wireshark_2.6.8-1.debian.tar.xz
0a21e821be302759b5af2986323462c53d5ebe90 22622 wireshark_2.6.8-1_source.buildinfo
Checksums-Sha256:
720282e1e03631d0ad34efd097d2734c181f7ca879418de4fb319514de8d7237 3523 wireshark_2.6.8-1.dsc
46185bc86e6d25aa313b53636c5d0042da6bcec1bfe280313d2c75e77bf9a934 28708004 wireshark_2.6.8.orig.tar.xz
fcb3b5387a4ab0d7a364bbfd8b528afb809ead90894dae4ca7266868b155ac35 70956 wireshark_2.6.8-1.debian.tar.xz
373736be8d41be514a5da1ea976c1b1cd21fd93b7631841f1af71e919640cd8c 22622 wireshark_2.6.8-1_source.buildinfo
Files:
40a5af457674e82f994c50b3086fe9f8 3523 net optional wireshark_2.6.8-1.dsc
755f0c662e317f164fbfff1d72007fda 28708004 net optional wireshark_2.6.8.orig.tar.xz
63246a8aefd3273fa21ffbe63a45bb36 70956 net optional wireshark_2.6.8-1.debian.tar.xz
69625cf758a6ca1ec7f3e3ba485e5448 22622 net optional wireshark_2.6.8-1_source.buildinfo
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCgAdFiEEI/PvTgXX55rLQUfDg6KBkWslS0UFAlyvKlgACgkQg6KBkWsl
S0Ug4g//VHwyo5AHKklIx+WEgQdTI7dAiWuaUxxeWCpOOvW64ePBDYYOiPRJiN8k
HpDOEKQyXqjnPnQUycpfIHmZnIKg3h/jOlkFoyzu0447HB/UmmnOAZ+MxhFSE1vb
bO3Xo6K5HCeqa63VHkivOGKQiCMFNSgqMghjE4ciORWV8OUHRDtB7t9GAMkhKguh
o9A2DZOyO8Jdji+03s2TG2vTYfCP4+50MMuA9A6SRbgJgin4gNK+vXx6OZvUaluM
mInYOLasbydyUBkHX1CNdne+qntt0ipahtlARg6jJp7vNXw03nmWlQvWx13kklb4
sEnrtIYAznd183UUOffyJKjc4Fi/0mefWm8gH8MZH6LYS/NeZxQ/EJXcmjSNMB6F
FCK86P5YYiClFwAO/o/uB7e8TvflFLmcGnYNYtMXa/1/AD+sKd05erqymQshVvZc
f08hC1bEmZnnqHwUK8IvtHDT5ouXKpGQg6FAhA1WjAvOn8CikW/HQXD9HjiV9zuj
k/ip31LvTNcE7oVlsVmiXM2iwfJhWlATVNZJeW8XpN+z2ifNo0yI5HZAD1nPRgGj
cbu6D+lQH/82tDmV7yctckbg5ALe5i2xhXjzuhg/QpWprWG0cXq13TDQR3HkYV/v
KCPQBuI8inXa8PJUiDHK7XNwmS6Hox4hRjIN+gjXUGp98Ib7dik=
=gEgA
-----END PGP SIGNATURE-----
Bug archived.
Request was from Debbugs Internal Request <owner@bugs.debian.org>
to internal_control@bugs.debian.org.
(Fri, 10 May 2019 07:26:10 GMT) (full text, mbox, link).
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Wed Jun 19 12:59:05 2019;
Machine Name:
beach
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon