HomeSolus

Update wireshark to 2.6.6 to address multiple CVEs

Authored by kyrios123 on Jan 9 2019, 12:57 PM.

Description

Update wireshark to 2.6.6 to address multiple CVEs

Summary:
Security:

  • The 6LoWPAN dissector could crash. CVE-2019-5716.
  • The P_MUL dissector could crash. CVE-2019-5717.
  • The RTSE dissector and other dissectors could crash. CVE-2019-5718.
  • The ISAKMP dissector could crash. CVE-2019-5719.

Release notes available here

Signed-off-by: Pierre-Yves <pyu@riseup.net>

Test Plan:
Setup wireshark for capturing packages as a normal user

sudo gpasswd -a $USER wireshark
sudo setcap cap_dac_override,cap_net_admin,cap_net_raw+eip /usr/bin/dumpcap

then capture some packets on the LAN

Reviewers: Triage Team, DataDrake

Reviewed By: Triage Team, DataDrake

Subscribers: DataDrake

Differential Revision: https://dev.getsol.us/D5012

Details

Committed
kyrios123Jan 9 2019, 7:00 PM
Pushed
kyrios123Jan 9 2019, 7:01 PM
Reviewer
Triage Team
Differential Revision
D5012: Update wireshark to 2.6.6 to address multiple CVEs
Parents
R3175:bd935efd453f: Switch to github source
Branches
Unknown
Tags
Unknown
References
tag: wireshark-2.6.6-33