Accepted ethereal 0.9.4-1woody5 (i386 source)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 16 Jun 2003 22:57:46 -0400
Source: ethereal
Binary: tethereal ethereal-dev ethereal ethereal-common
Architecture: source i386
Version: 0.9.4-1woody5
Distribution: stable-security
Urgency: high
Maintainer: Frederic Peters <fpeters@debian.org>
Changed-By: Matt Zimmerman <mdz@debian.org>
Description:
ethereal - Network traffic analyzer
ethereal-common - Network traffic analyser (common files)
ethereal-dev - Network traffic analyser (development tools)
tethereal - Network traffic analyzer (console)
Changes:
ethereal (0.9.4-1woody5) stable-security; urgency=high
.
* Non-maintainer upload by the Security Team
* Fix vulnerabilities announced in enpa-sa-00010
- throw an error on zero-length bufsize in tvb_get_nstringz0
(CAN-2003-0431)
[epan/tvbuff.c]
- Fix over-allocation problem in DCERPC dissector
(CAN-2003-0428)
[packet-dcerpc-lsa.c]
- Fix overflow with bad IPv4 or IPv6 prefix lengths
(CAN-2003-0429)
[packet-isis-lsp.c]
- Use a slightly larger buffer in print_tsap
(CAN-2003-0432)
[packet-clnp.c]
- Check snprintf return value correctly
(CAN-2003-0432)
[packet-isakmp.c, packet-wsp.c, packet-ieee80211.c, packet-dns.c]
- Fix buffer overflows on szInfo buffer
(CAN-2003-0432)
[packet-wtp.c]
- Use consistent buffer size for valString
(CAN-2003-0432)
[packet-wsp.c]
- Use a GString to avoid all sorts of dangerous buffer handling
with strcat, sprintf, strncpy
(CAN-2003-0432)
[packet-isis-clv.c, packet-dns.c, packet-bgp.c]
Files:
fb98a4629ed5c2a09188264978e235cb 679 net optional ethereal_0.9.4-1woody5.dsc
4db84b40ff262dc4fa536bcbb215eb2b 36263 net optional ethereal_0.9.4-1woody5.diff.gz
9c979f57424b5d55c5de6621098e96d2 286266 net optional ethereal-common_0.9.4-1woody5_i386.deb
5c1107c1016a8025e5b1d56eeccf84df 1511912 net optional ethereal_0.9.4-1woody5_i386.deb
9aeb2ffbc5277b3196b83e6d38b53621 1324568 net optional tethereal_0.9.4-1woody5_i386.deb
c49c94d9dc7312668c9b48a550df6a1c 198218 devel optional ethereal-dev_0.9.4-1woody5_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
iD8DBQE+76wzArxCt0PiXR4RAsS+AKCTZngIAY/eDlUjsXrQKdVJFhPHzACgmQtp
6LccakaJjJuNRluZBGO6JnA=
=yfb1
-----END PGP SIGNATURE-----
Accepted:
ethereal-common_0.9.4-1woody5_i386.deb
to pool/main/e/ethereal/ethereal-common_0.9.4-1woody5_i386.deb
ethereal-dev_0.9.4-1woody5_i386.deb
to pool/main/e/ethereal/ethereal-dev_0.9.4-1woody5_i386.deb
ethereal_0.9.4-1woody5.diff.gz
to pool/main/e/ethereal/ethereal_0.9.4-1woody5.diff.gz
ethereal_0.9.4-1woody5.dsc
to pool/main/e/ethereal/ethereal_0.9.4-1woody5.dsc
ethereal_0.9.4-1woody5_i386.deb
to pool/main/e/ethereal/ethereal_0.9.4-1woody5_i386.deb
tethereal_0.9.4-1woody5_i386.deb
to pool/main/e/ethereal/tethereal_0.9.4-1woody5_i386.deb
Reply to: