Bug#690048: Freeze exception request for wireshark 1.8.2-2
On 09/10/2012 15:40, Bálint Réczey wrote:
> Package: release.debian.org
> Severity: normal
> User: release.debian.org@packages.debian.org
> Usertags: freeze-exception
>
> Dear Release Team,
>
> I would like to update the wireshark package with security fixes
> released by upstream.
>
> Changes:
> wireshark (1.8.2-2) unstable; urgency=high
> .
> * security fixes from Wireshark 1.8.3 (Closes: #689972):
> - The HSRP dissector could go into an infinite loop (CVE-2012-5237)
> - The PPP dissector could abort (CVE-2012-5238)
> - Martin Wilck discovered an infinite loop in the DRDA dissector
> (CVE-2012-5239)
> - Laurent Butti discovered a buffer overflow in the LDP dissector
> (CVE-2012-5240)
>
If it only fixes security issues using targeted patches, then no need a
pre-approval ; just go ahead with the upload. If you need to include
more than that, we will need a debdiff to answer.
Thanks for your work!
--
Mehdi Dogguy مهدي الدڤي
Reply to: