On 09/10/2012 15:40, Bálint Réczey wrote: > Package: release.debian.org > Severity: normal > User: release.debian....@packages.debian.org > Usertags: freeze-exception > > Dear Release Team, > > I would like to update the wireshark package with security fixes > released by upstream. > > Changes: > wireshark (1.8.2-2) unstable; urgency=high > . > * security fixes from Wireshark 1.8.3 (Closes: #689972): > - The HSRP dissector could go into an infinite loop (CVE-2012-5237) > - The PPP dissector could abort (CVE-2012-5238) > - Martin Wilck discovered an infinite loop in the DRDA dissector > (CVE-2012-5239) > - Laurent Butti discovered a buffer overflow in the LDP dissector > (CVE-2012-5240) >
If it only fixes security issues using targeted patches, then no need a pre-approval ; just go ahead with the upload. If you need to include more than that, we will need a debdiff to answer. Thanks for your work! -- Mehdi Dogguy مهدي الدڤي -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
