[Secure-testing-commits] r20702 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2012-12-25 10:46:06 +0000 (Tue, 25 Dec 2012)
New Revision: 20702

Modified:
   data/CVE/list
Log:
fix some wireshark issues not suitable for code injection


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-12-25 10:41:16 UTC (rev 20701)
+++ data/CVE/list	2012-12-25 10:46:06 UTC (rev 20702)
@@ -6915,17 +6915,23 @@
 	- wireshark 1.8.2-1
 	[squeeze] - wireshark <not-affected> (Only affects 1.8.x)
 CVE-2012-4293 (plugins/ethercat/packet-ecatmb.c in the EtherCAT Mailbox dissector in ...)
-	- wireshark 1.8.2-1
+	- wireshark 1.8.2-1 (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-4292 (The dissect_stun_message function in epan/dissectors/packet-stun.c in ...)
-	- wireshark 1.8.2-1
+	- wireshark 1.8.2-1 (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-4291 (The CIP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before ...)
-	- wireshark 1.8.2-1
+	- wireshark 1.8.2-1 (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-4290 (The CTDB dissector in Wireshark 1.4.x before 1.4.15, 1.6.x before ...)
-	- wireshark 1.8.2-1
+	- wireshark 1.8.2-1 (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-4289 (epan/dissectors/packet-afp.c in the AFP dissector in Wireshark 1.4.x ...)
-	- wireshark 1.8.2-1
+	- wireshark 1.8.2-1 (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-4288 (Integer overflow in the dissect_xtp_ecntl function in ...)
-	- wireshark 1.8.2-1
+	- wireshark 1.8.2-1 (unimportant)
+	NOTE: not suitable for code injection
 CVE-2012-4287 (epan/dissectors/packet-mongo.c in the MongoDB dissector in Wireshark ...)
 	- wireshark 1.8.2-1
 	[squeeze] - wireshark <not-affected> (Only affects 1.8.x)