[Secure-testing-commits] r7403 - data/CVE
jmm-guest at alioth.debian.org
jmm-guest at alioth.debian.org
Tue Nov 27 00:23:26 UTC 2007
Author: jmm-guest
Date: 2007-11-27 00:23:26 +0000 (Tue, 27 Nov 2007)
New Revision: 7403
Modified:
data/CVE/list
Log:
record suite-specific not-affected notes for latest wireshark DSA
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2007-11-26 23:26:38 UTC (rev 7402)
+++ data/CVE/list 2007-11-27 00:23:26 UTC (rev 7403)
@@ -6,24 +6,38 @@
- rails <unfixed> (low; bug #452748)
CVE-2007-6111 [multiple security issues leading to denial of service]
- wireshark 0.99.7~pre1-1 (low)
+ [etch] - wireshark <not-affected> (Vulnerable code not present)
+ [sarge] - ethereal <not-affected> (Vulnerable code not present)
CVE-2007-6112 [buffer overflow in ppp dissector]
- wireshark 0.99.7~pre1-1 (medium)
+ [etch] - wireshark <not-affected> (Vulnerable code not present)
+ [sarge] - ethereal <not-affected> (Vulnerable code not present)
CVE-2007-6113 [remote denial of service via malformed dnp paket]
- wireshark 0.99.7~pre1-1 (low)
+ NOTE: This is likely a dupe of CVE-2007-4721, pinged MITRE
CVE-2007-6114 [multiple buffer overflows in SSL dissector]
- wireshark 0.99.7~pre1-1 (medium)
+ [sarge] - ethereal <not-affected> (Vulnerable code not present)
CVE-2007-6115 [buffer overflow in ANSI MAP dissector]
- wireshark 0.99.7~pre1-1 (medium)
+ [etch] - wireshark <not-affected> (Vulnerable code not present)
+ [sarge] - ethereal <not-affected> (Vulnerable code not present)
CVE-2007-6116 [infinite loop in firebird/interbase dissector]
- wireshark 0.99.7~pre1-1 (low)
+ [etch] - wireshark <not-affected> (Vulnerable code not present)
+ [sarge] - ethereal <not-affected> (Vulnerable code not present)
CVE-2007-6117 [unspecified vulnerability in HTTP dissector]
- wireshark 0.99.7~pre1-1
+ [sarge] - ethereal <not-affected> (Vulnerable code not present)
CVE-2007-6118 [loop in MEGACO dissector]
- wireshark 0.99.7~pre1-1 (low)
CVE-2007-6119 [loop in DCP ETSI dissector]
- wireshark 0.99.7~pre1-1 (low)
+ [etch] - wireshark <not-affected> (Vulnerable code not present)
+ [sarge] - ethereal <not-affected> (Vulnerable code not present)
CVE-2007-6120 [infinite loop in bluetooth SDP dissector]
- wireshark 0.99.7~pre1-1 (low)
+ [sarge] - ethereal <not-affected> (Vulnerable code not present)
CVE-2007-6121 [remote denial of service via malformed RPC portmap paket]
- wireshark 0.99.7~pre1-1 (low)
CVE-2007-6038 (PHP remote file inclusion vulnerability in xajax_functions.php in the ...)
More information about the Secure-testing-commits
mailing list