Log Message: |
- new security/bugfix release 1.4.10
o fixes CVE-2011-4101, Infiniband dissector could dereference a NULL
pointer through a malformed package, leading to a segfault
o fixes CVE-2011-1957, large/infinite loop in the DICOM dissector
o fixes CVE-2011-1958, corrupt Diameter dictionary file could crash Wireshark
o fixes CVE-2011-1959, corrupted snoop file could crash Wireshark
o fixes CVE-2011-2174, malformed compressed capture data could crash Wireshark
o fixes CVE-2011-2175, corrupted Visual Networks file could crash Wireshark
o fixes CVE-2011-2597, the Lucent/Ascend file parser was susceptible to an
infinite loop
o fixes CVE-2011-2698, the ANSI MAP dissector was susceptible to an infinite
loop
o fixes 71 various other bugs (not security-related)
- dropped CVE-2011-3360.patch, CVE-2011-3483.patch, CVE-2011-3266.patch
CVE-2011-4102 (already fixed in 1.4.10)
- rediffed skip_disabled_function_when_running_as_root.patch
|