Page MenuHomeSolus

Update wireshark to 2.6.6 to address multiple CVEs
ClosedPublic

Authored by kyrios123 on Wed, Jan 9, 12:59 PM.

Details

Summary

Security:

  • The 6LoWPAN dissector could crash. CVE-2019-5716.
  • The P_MUL dissector could crash. CVE-2019-5717.
  • The RTSE dissector and other dissectors could crash. CVE-2019-5718.
  • The ISAKMP dissector could crash. CVE-2019-5719.

Release notes available here

Signed-off-by: Pierre-Yves <pyu@riseup.net>

Test Plan

Setup wireshark for capturing packages as a normal user

sudo gpasswd -a $USER wireshark
sudo setcap cap_dac_override,cap_net_admin,cap_net_raw+eip /usr/bin/dumpcap

then capture some packets on the LAN

Diff Detail

Repository
R3175 wireshark
Lint
Automatic diff as part of commit; lint not applicable.
Unit
Automatic diff as part of commit; unit tests not applicable.
kyrios123 created this revision.Wed, Jan 9, 12:59 PM
kyrios123 requested review of this revision.Wed, Jan 9, 12:59 PM
DataDrake accepted this revision.Wed, Jan 9, 6:09 PM
DataDrake added a subscriber: DataDrake.

LGTM. Thanks!

This revision is now accepted and ready to land.Wed, Jan 9, 6:09 PM
This revision was automatically updated to reflect the committed changes.