Accepted ethereal 0.99.0-1 (source i386)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 1 May 2006 14:50:42 +0200
Source: ethereal
Binary: ethereal ethereal-dev tethereal ethereal-common
Architecture: source i386
Version: 0.99.0-1
Distribution: unstable
Urgency: high
Maintainer: Frederic Peters <fpeters@debian.org>
Changed-By: Frederic Peters <fpeters@debian.org>
Description:
ethereal - network traffic analyzer
ethereal-common - network traffic analyser (common files)
ethereal-dev - network traffic analyser (development tools)
tethereal - network traffic analyzer (console)
Changes:
ethereal (0.99.0-1) unstable; urgency=high
.
* New upstream release (urgency high since it fixes security issues;
see http://www.ethereal.com/appnotes/enpa-sa-00023.html advisory)
* crash in H.248 dissector (CVE-2006-1937)
* infinite loop in UMA dissector (CVE-2006-1933)
* crash in X.509if dissector (CVE-2006-1937)
* crash in SRVLOC dissector (CVE-2006-1937)
* crash in H.245 dissector (CVE-2006-1937)
* off-by-one error in OID printing routine (CVE-2006-1932)
* buffer overflow in COPS dissector (CVE-2006-1935)
* buffer overflow in ALCAP dissector (CVE-2006-1934)
* crash in statistics counter (CVE-2006-1937)
* crash with malformed capture (CVE-2006-1938)
* crash with invalid display filter (CVE-2006-1939)
* crash in general packet dissector (CVE-2006-1937)
* crash in AIM dissector (CVE-2006-1937)
* crash in RPC dissector (CVE-2006-1939)
* crash in DCERPC dissector (CVE-2006-1939)
* crash in ASN.1 dissector (CVE-2006-1939)
* crash in SMB PIPE dissector (CVE-2006-1938)
* excessive loop in BER dissector (CVE-2006-1933)
* abort in SNDCP dissector (CVE-2006-1940)
* buffer overrun in Network Instruments file code (CVE-2006-1934)
* buffer overrun in NetXray/Windows Sniffer file code (CVE-2006-1934)
* crash in GSM SMS dissector (CVE-2006-1939)
* buffer overrun in ALCAP dissector (CVE-2006-1934)
* buffer overrun in telnet dissector (CVE-2006-1936)
* crash in ASN.1 based dissectors (CVE-2006-1939)
* crash in DCERPC NT dissector (CVE-2006-1939)
* crash in PER dissector (CVE-2006-1939)
* debian/patches/04_drop-capabilities.dpatch: updated.
* debian/control: added build-depends on libgnutls-dev since libgnutls can
now be used for SSL support.
Files:
0a3949efd4307b7d09f42355733b85b3 886 net optional ethereal_0.99.0-1.dsc
92490abe23df1b2078579c512c788f9d 11284145 net optional ethereal_0.99.0.orig.tar.gz
755ae622f3613cd5d8bbedc799cc7e7f 144778 net optional ethereal_0.99.0-1.diff.gz
7a3c6e1e13b8ca1ddefb659586f6bb6f 6841996 net optional ethereal-common_0.99.0-1_i386.deb
df70779537dd51d78b73002d4f025861 577124 net optional ethereal_0.99.0-1_i386.deb
3a702ff253b81b1c4c4961b9aa88d2fb 108732 net optional tethereal_0.99.0-1_i386.deb
dec61c1284100463800f85486e7f1f78 176936 devel optional ethereal-dev_0.99.0-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
iD8DBQFEVxieoR3LsWeD7V4RAhlrAJ9OHqQlrqbVcGldFqUR9G+22FxVYgCfR5aR
HkNKBLJzxVT7/xU8JfEV21s=
=NpG3
-----END PGP SIGNATURE-----
Accepted:
ethereal-common_0.99.0-1_i386.deb
to pool/main/e/ethereal/ethereal-common_0.99.0-1_i386.deb
ethereal-dev_0.99.0-1_i386.deb
to pool/main/e/ethereal/ethereal-dev_0.99.0-1_i386.deb
ethereal_0.99.0-1.diff.gz
to pool/main/e/ethereal/ethereal_0.99.0-1.diff.gz
ethereal_0.99.0-1.dsc
to pool/main/e/ethereal/ethereal_0.99.0-1.dsc
ethereal_0.99.0-1_i386.deb
to pool/main/e/ethereal/ethereal_0.99.0-1_i386.deb
ethereal_0.99.0.orig.tar.gz
to pool/main/e/ethereal/ethereal_0.99.0.orig.tar.gz
tethereal_0.99.0-1_i386.deb
to pool/main/e/ethereal/tethereal_0.99.0-1_i386.deb
Reply to: