Bug 780669

Summary: Wireshark has been built without Lua support in openSUSE 12.2
Product: [openSUSE] openSUSE 12.2 Reporter: Forgotten User gVZxc0BvFA <forgotten_gVZxc0BvFA>
Component: NetworkAssignee: Security Team bot <security-team>
Status: RESOLVED FIXED QA Contact:
Severity: Normal    
Priority: P3 - Medium CC: Andreas.Stieger, bbrunner, meissner
Version: Final   
Target Milestone: ---   
Hardware: i686   
OS: openSUSE 12.2   
Whiteboard:
Found By: --- Services Priority:
Business Priority: Blocker: ---
Marketing QA Status: --- IT Deployment: ---

Description Forgotten User gVZxc0BvFA 2012-09-16 18:51:13 UTC 
User-Agent:       Mozilla/5.0 (X11; Linux i686; rv:15.0) Gecko/20100101 Firefox/15.0

Wireshark has been built without Lua support in openSUSE 12.2 which
means that dissectors implemented in Lua which worked in openSUSE 12.1
no longer work.

Reproducible: Always

Steps to Reproduce:
1. execute tshark -v

Actual Results:  
tshark output:
TShark 1.8.2 (SVN Rev Unknown from unknown)

Copyright 1998-2012 Gerald Combs <gerald@wireshark.org> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (32-bit) with GLib 2.32.3, with libpcap, without libz, with POSIX
capabilities (Linux), with SMI 0.4.8, with c-ares 1.7.5, without Lua, without
Python, without GnuTLS, with Gcrypt 1.5.0, with MIT Kerberos, with GeoIP.

Running on Linux 3.4.6-2.10-default, with locale en_US, with libpcap version
1.2.1.

Built using gcc 4.7.1 20120723 [gcc-4_7-branch revision 189773].


Expected Results:  
tshark output:
TShark 1.8.2 (SVN Rev Unknown from unknown)

Copyright 1998-2012 Gerald Combs <gerald@wireshark.org> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled (32-bit) with GLib 2.32.3, with libpcap, without libz, with POSIX
capabilities (Linux), with SMI 0.4.8, with c-ares 1.7.5, with Lua 5.1, without
Python, without GnuTLS, with Gcrypt 1.5.0, with MIT Kerberos, with GeoIP.

Running on Linux 3.4.6-2.10-default, with locale en_US, with libpcap version
1.2.1.

Built using gcc 4.7.1 20120723 [gcc-4_7-branch revision 189773].


Please consider re-adding support for Wireshark in openSUSE 12.2 so
that Wireshark dissectors which worked in openSUSE 12.1 work again
in openSUSE 12.2.
Comment 1 Chunyan Liu 2012-11-13 06:23:24 UTC 
Changing wireshark.spec BuildRequires lua-devel to lua51-devel can solve it.
Submitted to OBS sr#141047.
Comment 2 Andreas Stieger 2012-11-14 00:08:13 UTC 
(In reply to comment #1)
> Changing wireshark.spec BuildRequires lua-devel to lua51-devel can solve it.
> Submitted to OBS sr#141047.

It would have been better to also (or first) submit this change to the designated devel package in network:utilities / wireshark. Without that, this bug persists for users of that package, in openSUSE Factory and it will re-appear in future openSUSE releases.

https://build.opensuse.org/request/show/141212
https://build.opensuse.org/request/show/141213

Your diff in openSUSE:Maintenance:1087 :

-BuildRequires:  lua-devel
+BuildRequires:  lua51-devel

Better (and now used in network:utilities / wireshark and for openSUSE Factory):

+%if 0%{?suse_version} >= 1220
+BuildRequires:  lua51-devel
+%else
 BuildRequires:  lua-devel
+%endif


Tested that either change actually configures/links/requires Lua for openSUSE 12.2 and later. As this is not a security bug this should go to maintenance? 

I'm indifferent about a separate bugfix release considering the OBS package is now available, we could just as well combine with the next security update for wireshark which is sure to come at some point.
Comment 3 Bernhard Wiedemann 2012-11-14 13:29:46 UTC 
This is an autogenerated message for OBS integration:
This bug (780669) was mentioned in
https://build.opensuse.org/request/show/141046
https://build.opensuse.org/request/show/141047
Comment 4 Benjamin Brunner 2012-11-15 16:50:52 UTC 
We already started an maintenance update for wireshark. Andreas could you submit the fix from the devel-project please. I'll add it to the running update. Thanks.
Comment 5 Andreas Stieger 2012-11-29 20:58:08 UTC 
adding to openSUSE:Maintenance:1087 ... with security update for bug 792005.
Comment 6 Andreas Stieger 2012-11-29 21:32:57 UTC 
MR: https://build.opensuse.org/request/show/143625
Comment 7 Swamp Workflow Management 2012-12-10 11:08:50 UTC 
openSUSE-SU-2012:1633-1: An update that fixes 11 vulnerabilities is now available.

Category: security (moderate)
Bug References: 780669,792005
CVE References: CVE-2012-5592,CVE-2012-5593,CVE-2012-5594,CVE-2012-5595,CVE-2012-5596,CVE-2012-5597,CVE-2012-5598,CVE-2012-5599,CVE-2012-5600,CVE-2012-5601,CVE-2012-5602
Sources used:
openSUSE 12.2 (src):    wireshark-1.8.4-1.15.1
openSUSE 12.1 (src):    wireshark-1.8.4-3.33.1
Comment 8 Marcus Meissner 2013-03-11 07:17:42 UTC 
released