|
|
|
|
Changelog for libwiretap13-4.0.4-1.1.x86_64.rpm :
* Fri Mar 03 2023 Robert Frohl - Wireshark 4.0.4: * ISO 15765 and ISO 10681 dissector crash (boo#1208914).- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-4.0.4.html * Thu Jan 19 2023 Robert Frohl - Wireshark 4.0.3 (boo#1207447): * CVE-2023-0414: EAP dissector crash (boo#1207666). * CVE-2023-0417: NFS dissector memory leak (boo#1207669). * CVE-2023-0413: Dissection engine crash (boo#1207665). * CVE-2023-0416: GNW dissector crash (boo#1207668). * CVE-2023-0415: iSCSI dissector crash (boo#1207667). * CVE-2023-0411: Multiple dissector excessive loops (boo#1207663). * CVE-2023-0412: TIPC dissector crash (boo#1207664).- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-4.0.3.html * Thu Dec 08 2022 Robert Frohl - Wireshark 4.0.2: * CVE-2022-4345: Multiple dissector infinite loops (boo#1206189). * Kafka dissector memory exhaustion (boo#1206190).- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-4.0.2.html * Thu Oct 27 2022 Robert Frohl - Wireshark 4.0.1: * Comparing a boolean field against 1 always succeeds on big-endian machines. * Qt: MaxMind GeoIP columns not added to Endpoints table. * Fuzz job crash output: fuzz-2022-10-04-7131.pcap. * The RTP player might not play audio on Windows. * Wireshark 4.0 breaks display filter expression with > sign. * Capture filters not working when using SSH capture and dumpcap. * Packet diagram field values are not terminated. * Packet bytes not displayed completely if scrolling. * Fuzz job crash output: fuzz-2022-10-13-7166.pcap. * Decoding bug H.245 userInput Signal. * CFDP dissector doesn’t handle \\\"destination filename\\\" only. * Home page capture button doesn’t pop up capture options dialog. * Missing dot in H.248 protocol name. * Missing dot for protocol H.264 in protocol column. * Fuzz job crash output: fuzz-2022-10-23-7240.pcap.- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-4.0.1.html * Fri Oct 07 2022 ecsos - Added an additional desktopfile to start wireshark which asks for the super user password. * Thu Oct 06 2022 ecsos - Fix build error for Leap. * Wed Oct 05 2022 Robert Frohl - Wireshark 4.0.0: * The display filter syntax is more powerful with many new extensions. * The Conversation and Endpoint dialogs have been redesigned. * The default main window layout has been changed so that the Packet Detail and Packet Bytes are side by side underneath the Packet List pane. * Hex dump imports from Wireshark and from text2pcap have been improved. * Speed when using MaxMind geolocation has been greatly improved.- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-4.0.0.html- updated wireshark-0010-dumpcap-permission-denied.patch- dropped wireshark-0001-pkgconfig.patch which was accepted upstream * Thu Sep 08 2022 Robert Frohl - Wireshark 3.6.8: * CVE-2022-3190: F5 Ethernet Trailer dissector infinite loop (boo#1203388).- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.6.8.html * Thu Jul 28 2022 Robert Frohl - Wireshark 3.6.7: * Multiple Files preference \"Create new file automatically… after\" [time] working incorrectly. * get_filter Lua function doesn’t return the filter. * Dissector bug, protocol HTTP failed assertion \"saved_layers_len < 500\" with chunked/multipart. * Wrong EtherCAT bit label (possible dissector bug). * UDP packets falsely marked as \"malformed packet\". * TLS certificate parser with filter crash. * Incorrect type for the IEC 60870 APDU appears in packet details pane. * NHRP Problem. * EtherCAT CoE header unknown type.- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.6.7.html * Mon Jun 20 2022 Robert Frohl - Wireshark 3.6.6: * TLS: RSA decryption fails with Extended Master Secret and renegotiation. * \"dfilter\" file on Windows adds carriage returns, and requires line feeds. * \"Browse\" button in Prefs/Name Resolution/MaxMind crashes Wireshark on macOS. * TFTP: some packets are not recognized as TFTP packets with 3.6.5.- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.6.6.html * Thu May 05 2022 Robert Frohl - Wireshark 3.6.5 and 3.6.4: * The 3.6.5 release fixes an installation issue on Windows which was introduced in the 3.6.4 release * Build failure with GCC 7.5, Linux. * RDP dissected as SSL. * IPFIX/cflow dissector asserts when varlen field length is zero. * 802.11ax HE PHY \"Device Class\" dissected incorrectly. * DHCPv6 Option 15 User-Class incorrectly parsed in Wireshark. * ICMPv6 dissector: PREF64 option parsing only works for prefix length 96. * Switch macOS updater to Sparkle 2. * CQL timestamp dissector displays the wrong timestamp. * Unable to dissect 802.11ax Target Wake Time (TWT) packets.- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.6.4.html * Thu Mar 24 2022 Robert Frohl - Wireshark 3.6.3: * Fuzz job crash output: fuzz-2021-01-19-7399.pcap. * TLS dissector incorrectly reports JA3 values. * \"Wiki Protocol page\" in packet details menu is broken - wiki pages not migrated to GitLab?. * Dissector bug, protocol PFCP display Flow Description IE value error in Additional Flow Description of PFD Management Request Message. * Bluetooth: Fails to open Log file for SCO connection. * Fuzz job crash output: fuzz-2022-03-07-10896.pcap. * libwiretap: Save as ERF causes segmentation fault. * HTTP server returning multiple early hints shows too many responses in \"Follow HTTP Stream\".- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.6.3.html * Fri Feb 11 2022 Robert Frohl - Wireshark 3.6.2: * CVE-2022-0586: RTMPT dissector infinite loop (boo#1195866) * CVE-2022-0585: Large loops in multiple dissectors (boo#1195867) * CVE-2022-0583: PVFS dissector crash (boo#1195868) * CVE-2022-0582: CSN.1 dissector crash (boo#1195869) * CVE-2022-0581: CMS dissector crash (boo#1195870)- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.6.2.html * Tue Jan 18 2022 Robert Frohl - Fix wireshark-plugin-libvirt build after wmem_alloc() moved from libwireshark.so to libwsutil.so (bsc#1194780) * Added wireshark-0001-pkgconfig.patch- Renamed wireshark-0001-dumpcap-permission-denied.patch to wireshark-0010-dumpcap-permission-denied.patch * Mon Jan 10 2022 Robert Frohl - Fix SLE15 build issue added wireshark-0000-wsutil-implicit_declaration_memcpy.patch * Thu Dec 30 2021 Robert Frohl - Wireshark 3.6.1: * CVE-2021-4185: RTMPT dissector infinite loop (boo#1194166) * CVE-2021-4184: BitTorrent DHT dissector infinite loop (boo#1194167) * CVE-2021-4183: pcapng file parser crash (boo#1194168) * CVE-2021-4182: RFC 7468 file parser infinite loop (boo#1194169) * CVE-2021-4181: Sysdig Event dissector crash (boo#1194170) * CVE-2021-4190: Kafka dissector infinite loop (boo#1194171) * Add \'-o console.log.level:\' transitional option for backward- compatibilty replacing the \'console.log.level\' preference removed in 3.6.0. Only avoids cli failures and will be removed in the future.- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.6.1.html * Mon Dec 20 2021 Robert Frohl - Wireshark 3.6.0: * CVE-2021-4186: Gryphon dissector crash (boo#1194165). * Several changes have been made to the display filter syntax: - The expression \"a != b\" now always has the same meaning as \"!(a == b)\". In particular this means filter expressions with multi-value fields like \"ip.addr != 1.1.1.1\" will work as expected (the result is the same as typing \"ip.src != 1.1.1.1 and ip.dst != 1.1.1.1\"). This avoids the contradiction (a == b and a!= b) being true. - It is possible to use the syntax \"a ~= b\" or \"a any_ne b\" to recover the previous (inconsistent with \"==\") logic for not equal. - Literal strings can now be specified using raw string syntax, identical to raw strings in the Python programming language. This can be used to avoid the complexity of using two levels of character escapes with regular expressions. - Set elements must now be separated using a comma. A filter such as http.request.method in {\"GET\" \"HEAD\"} must be written as ... in {\"GET\", \"HEAD\"}. Whitespace is not significant. The previous use of whitespace as separator is deprecated and will be removed in a future version. - Support for the syntax \"a not in b\" with the same meaning as \"not a in b\" has been added. * TCP conversations now support a completeness criteria, which facilitates the identification of TCP streams having any of opening or closing handshakes, a payload, in any combination. It can be accessed with the new tcp.completeness filter. * Protobuf fields that are not serialized on the wire or otherwise missing in capture files can now be displayed with default values by setting the new \"add_default_value\" preference. The default values might be explicitly declared in \"proto2\" files, or false for bools, first value for enums, zero for numeric types. * Wireshark now supports reading Event Tracing for Windows (ETW). A new extcap named ETW reader is created that now can open an etl file, convert all events in the file to DLT_ETW packets and write to a specified FIFO destination. Also, a new packet_etw dissector is created to dissect DLT_ETW packets so Wireshark can display the DLT_ETW packet header, its message and packet_etw dissector calls packet_mbim sub_dissector if its provider matches the MBIM provider GUID. * \"Follow DCCP stream\" feature to filter for and extract the contents of DCCP streams. * Wireshark now supports dissecting RTP packets with OPUS payloads. * Added support for Shared Memory Communications (SMC) (jsc#SLE-18727)- Further features, bug fixes and new and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.6.0.html- updated patch to work with upstream changes wireshark-0001-dumpcap-permission-denied.patch * Thu Nov 18 2021 Paolo Stivanin - Wireshark 3.4.10 (bsc#1192830): * CVE-2021-39929: Bluetooth DHT dissector crash. * CVE-2021-39926: Bluetooth HCI_ISO dissector crash. * CVE-2021-39925: Bluetooth SDP dissector crash. * CVE-2021-39924: Bluetooth DHT dissector large loop. * CVE-2021-39922: C12.22 dissector crash. * CVE-2021-39928: IEEE 802.11 dissector crash. * CVE-2021-39921: Modbus dissector crash. * CVE-2021-39920: IPPUSB dissector crash. * PNRP dissector large loop. * Fix forward compatibility issue with the I/O Graphs preferences. * OSS-Fuzz: Heap-use-after-free in ROS. * Allow for \'\\0\' (NULL) character as filter instead of requiring 0x00 for the character match. * Dumpcap with threads reports double received count vs captured. * HTTP2 dissector reports an assertion error on large data frames. * Shark stops capturing when capturing with multiple files and packet printing enabled.- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.4.10.html * Thu Oct 07 2021 Robert Frohl - Wireshark 3.4.9: * TShark PDML output embeds \"proto\" elements within other \"proto\" elements. * Filter expressions comparing against single-octet hex strings where the hex digit string equals a protocol name don’t work. * AMQP 0.9: dissector fails to handle Content-Body frame split across TCP packets. * IEEE 802.15.4: Missing check on \"PAN ID Present\" bit of the Multipurpose Frame Control field. * Wireshark ignored some character in filename when exporting SMB objects.- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.4.9.html * Thu Aug 26 2021 Robert Frohl - Wireshark 3.4.8: * Dissector bug reported for Bluetooth Cycling Power Measurement characteristic for extreme angles value * Raknet Addresses are incorrectly identified. * Editcap saving files as ethernet when specifying \'-T ieee-802-11- *\' * CoAP dissector confuses Content-Format with Accept- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.4.8.html * Fri Jul 16 2021 Robert Frohl - Wireshark 3.4.7: * CVE-2021-22235: Fix DNP dissector crash (boo#1188375, wnpa-sec-2021-06) * Fix TCP dissector - Erroneous DSACK reporting * Fix No wlan_radio.duration calculated for PHY type: 802.11ac (VHT) * Fix NAN Dissector has wrong minimum length for availability attribute * Thu Jun 03 2021 Andreas Stieger - Wireshark 3.4.6: * Fix DVB-S2-BB dissector infinite loop (boo#1186790, wnpa-sec-2021-04) * Fix Macro filters handling of escaped characters * Fix Display filter crash * Fix IEEE-1588 Signalling Unicast TLV incorrectly reported as being malformed * Fix IETF QUIC TLS decryption error with extraneous packets during the handshake * Fix Statistics - Resolved Addresses: multi-protocol (TCP/UDP/...) ports not displayed * Thu Apr 22 2021 Andreas Stieger - Wireshark 3.4.5: * CVE-2021-22207: MS-WSP dissector excessive memory consumption (boo#1185128, wnpa-sec-2021-04) * Fix TShark not printing GeoIP information * FIx TShark error when piping to \"head\" * Fix missing parts of ASCII representation in Packet Bytes pane * Fix dissection of NDPE attribute of NAN packet * Fix TECMP: reserved flag interpreted as part of timestamp * Fix DNS IXFR/AXFR multiple response * Fix File too large issue- drop patches: * cmake_3-20_compatibility_1.patch * cmake_3-20_compatibility_2.patch * wireshark-0008-move-glib.patch * Wed Mar 31 2021 Robert Frohl - cmake 3.20 compatibility (boo#1184110) add cmake_3-20_compatibility_1.patch and cmake_3-20_compatibility_2.patch * Tue Mar 30 2021 Neal Gompa - Add patch from Fedora to fix build with glib2-2.68 + Patch: wireshark-0008-move-glib.patch * Thu Mar 11 2021 Robert Frohl - Wireshark 3.4.4: * CVE-2021-22191: Wireshark could open unsafe URLs (boo#1183353).- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.4.4.html * Fri Feb 19 2021 Robert Frohl - Enable ITU G.729 Annex A/B speech codec for Tumbleweed only * Sat Jan 30 2021 Andreas Stieger - Wireshark 3.4.3: * CVE-2021-22173: fix USB HID dissector memory leak (wnpa-sec-2021-01, boo#1181598) * CVE-2021-22174: fix USB HID dissector crash (wnpa-sec-2021-02, boo#1181599) * Fix bugs in SIP, Telephony, QUIC, SOMEIP-SD, SRv6, TECMP, AUTOSAR-NM, Fibre Channel, f5ethtrailer, ZVT dissectors. * fix TShark crashes with -T ek option * Fri Jan 22 2021 Robert Frohl - Disable ITU G.729 Annex A/B speech codec for SUSE based distros, but keep enabled for openSUSE. * Wed Jan 13 2021 Robert Frohl - provide helpful error message if user doesn\'t have permissions to run dumpcap (bsc#1180102) add wireshark-0001-dumpcap-permission-denied.patch * Sat Dec 19 2020 Andreas Stieger - Wireshark 3.4.2 * CVE-2020-26422: QUIC dissector crash (boo#1180232) * Fix IETF QUIC TLS decryption errors when packets are coalesced with random data * QUIC: missing dissection of some coalesced SH packets * Fix false expect error seen on FCoE frames * Updated Protocol Support DOCSIS, FC-dNS, FC-SWILS, FCoE, QUIC, SNMP, and USBHID * Fri Dec 11 2020 Andreas Stieger - Wireshark 3.4.1: * CVE-2020-26418: Kafka dissector memory leak (wnpa-sec-2020-16, boo#1179930) * CVE-2020-26419: Multiple dissector memory leaks (wnpa-sec-2020-19, boo#1179931) * CVE-2020-26420: RTPS dissector memory leak (wnpa-sec-2020-18, boo#1179932) * CVE-2020-26421: USB HID dissector crash (wnpa-sec-2020-17, boo#1179933) * Fix IETF QUIC TLS decryption errors * Fix failures or crashes in various dissectors * Fri Oct 30 2020 Andreas Stieger - Wireshark 3.4.0: * Save RTP stream to .au supports any codec with 8000 Hz rate supported by Wireshark (shown in RTP player). If save of audio is not possible (unsupported codec or rate), silence of same length is saved and warning is shown. * Asynchronous DNS resolution is always enabled * Protobuf fields can be dissected as Wireshark (header) fields that allows user input the full names of Protobuf fields or messages in Filter toolbar for searching. * Dissectors based on Protobuf can register themselves to a new \'protobuf_field\' dissector table, which is keyed with the full names of fields, for further parsing fields of BYTES or STRING type. * UI improvements * sshdump can now be copied to multiple instances. Each instance will show up a different interface and will have its own * decode, play, and save opus payloads- features not enabled in the openSUSE package: * decode, play, and save iLBC payloads * Fri Oct 30 2020 Robert Frohl - wireshark 3.2.8: * CVE-2020-26575: FBZERO dissector crash (boo#1177406) * CVE-2020-28030: GQUIC dissector crash (boo#1178291) * Infinite memory allocation while parsing this tcp packet- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.8.html * Thu Sep 24 2020 Robert Frohl - wireshark 3.2.7: * CVE-2020-25863: MIME Multipart dissector crash (boo#1176908) * CVE-2020-25862: TCP dissector crash (boo#1176909) * CVE-2020-25866: BLIP dissector crash (boo#1176910)- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.7.html * Wed Aug 12 2020 Andreas Stieger - Wireshark 3.2.6: * CVE-2020-17498: Kafka dissector crash (boo#1175204) * Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.6.html * Wed Jul 01 2020 Andreas Stieger - Wireshark 3.2.5: * CVE-2020-15466: GVCP dissector infinite loop (boo#1173606) * Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.5.html- make verification of package source signatures compatible with source_validator * Fri Jun 05 2020 Michel Normand - Add _constraints for ppc/ppc64le that need more than 3GB to build * Wed May 20 2020 Robert Frohl - wireshark 3.2.4 * CVE-2020-13164: NFS dissector crash (boo#1171899)- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.4.html * Thu Apr 09 2020 Robert Frohl - wireshark 3.2.3 (boo#1169063) * CVE-2020-11647: The BACapp dissector could crash- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.3.html * Fri Mar 06 2020 Robert Frohl - Remove dependency on brotli, only the library is needed. * Thu Feb 27 2020 Robert Frohl - wireshark 3.2.2 (boo#1165241) * CVE-2020-9431: LTE RRC dissector memory leak. * CVE-2020-9430: WiMax DLMAP dissector crash. * CVE-2020-9428: EAP dissector crash. * CVE-2020-9429: WireGuard dissector crash.- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.2.html * Thu Jan 23 2020 Robert Frohl - Fixed build against SLE flavors * Thu Jan 16 2020 Robert Frohl - wireshark 3.2.1 * CVE-2020-7044: WASSP dissector crash (boo#1161052)- Further features, bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-3.2.1.html
|
|
|