[Secure-testing-commits] r16325 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2011-03-08 09:50:51 +0000 (Tue, 08 Mar 2011)
New Revision: 16325

Modified:
   data/CVE/list
Log:
wireshark fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2011-03-08 09:16:20 UTC (rev 16324)
+++ data/CVE/list	2011-03-08 09:50:51 UTC (rev 16325)
@@ -325,19 +325,21 @@
 CVE-2011-1145
 	RESERVED
 CVE-2011-1144 (The installer in PEAR 1.9.2 and earlier allows local users to ...)
-	TODO: check
+	TODO: apparenty not in Debian. Raphael, can you confirm?
 CVE-2011-1143 (epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark ...)
-	TODO: check
+	- wireshark 1.4.4-1 (unimportant)
 CVE-2011-1142 (Stack consumption vulnerability in the dissect_ber_choice function in ...)
-	TODO: check
+	- wireshark 1.4.4-1 (unimportant)
 CVE-2011-1141 (epan/dissectors/packet-ldap.c in Wireshark 1.0.x, 1.2.0 through ...)
-	TODO: check
+	- wireshark 1.4.4-1 (unimportant)
 CVE-2011-1140 (Multiple stack consumption vulnerabilities in the ...)
-	TODO: check
+	- wireshark 1.4.4-1 (unimportant)
 CVE-2011-1139 (wiretap/pcapng.c in Wireshark 1.2.0 through 1.2.14 and 1.4.0 through ...)
-	TODO: check
+	- wireshark 1.4.4-1 (unimportant)
 CVE-2011-1138 (Off-by-one error in the dissect_6lowpan_iphc function in ...)
-	TODO: check
+	- wireshark 1.4.4-1
+	[lenny] - wireshark <not-affected> (Vulnerable code not present)
+	[squeeze] - wireshark <not-affected> (Vulnerable code not present)
 CVE-2011-1131
 	RESERVED
 CVE-2011-1130
@@ -1484,7 +1486,7 @@
 CVE-2011-0714
 	RESERVED
 CVE-2011-0713 (Heap-based buffer overflow in wiretap/dct3trace.c in Wireshark 1.2.0 ...)
-	- wireshark <unfixed>
+	- wireshark 1.4.4-1
 	[lenny] - wireshark <not-affected> (Vulnerable code not present)
 	NOTE: http://anonsvn.wireshark.org/viewvc?view=rev&revision=35953
 CVE-2011-0712 (Multiple buffer overflows in the caiaq Native Instruments USB audio ...)