Hey there, I'm a wireshark core dev and kind of the unofficial point of contact for Ubuntu/Wireshark (along with Balint Reczey, who maintains the upstream Debian package).
As far as I know, Balint has been backporting the necessary CVE fixes into the wireshark packages for Debian stable. For precise, at least, moving from 1.6 to 1.12 is a huge change and perhaps unnecessary, when Debian stable-sec has a perfectly good 1.8.2-5wheezy13. For trusty and utopic, updating to 1.12 seems the best way forward. Please let me know if there's anything the Wireshark project can do to make this process easier for you in the future. Evan -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1397091 Title: [Security] Update Wireshark in Precise, Trusty, and Utopic to 1.12.1+g01b65bf-2 (from Vivid) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1397091/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
