Wireshark mailing list archives
Re: Security issue resolution in 1.0.x series.
From: Guy Harris <guy () alum mit edu>
Date: Sat, 2 Jan 2010 15:04:10 -0800
On Jan 2, 2010, at 1:34 PM, Gerald Combs wrote:
I also see that 1.0.11 is being planned to be released.So will it contain the fix for all the current open bugs/security issues ?That's the plan.
More precisely, it will contain the fixes for all the current open bugs/security issues *that are present in the 1.0.x series*; obviously, it won't fix bugs/security issues *not* present in the 1.0.x series. That's why, for example, it will *not* fix
1) A boundary error in the Daintree SNA file parser can be exploited to cause a buffer overflow via a specially crafted capture file. Successful exploitation may allow execution of arbitrary code. 2) An error in the IPMI dissector on Windows can be exploited to cause a crash. The vulnerabilities are reported in versions 1.2.0 through 1.2.4.
because, as Gerald noted:
No. Daintree SNA parser doesn't exist in the 1.0.x branch so there's no "there" there to patch. Similarly, the affected IPMI code doesn't exist in the 1.0.x branch.
which is why those vulnerabilities are reported in 1.2.0 through 1.2.4 but not in any 1.0.x releases, unlike the SMB and SMB2 vulnerabilities:
3) An error in the SMB and SMB2 dissectors can be exploited to cause a crash. The vulnerability is reported in versions 0.9.0 through 1.2.4.
which are also reported in all 1.0.x versions, as well as several pre-1.0.0 versions, in addition to 1.2.0 through 1.2.4. ___________________________________________________________________________ Sent via: Wireshark-dev mailing list <wireshark-dev () wireshark org> Archives: http://www.wireshark.org/lists/wireshark-dev Unsubscribe: https://wireshark.org/mailman/options/wireshark-dev mailto:wireshark-dev-request () wireshark org?subject=unsubscribe
Current thread:
- Re: Security issue resolution in 1.0.x series. Gerald Combs (Jan 02)
- Re: Security issue resolution in 1.0.x series. Guy Harris (Jan 02)