[Secure-testing-commits] r23132 - data/CVE

Moritz Muehlenhoff jmm at alioth.debian.org
Mon Jul 29 16:06:46 UTC 2013 

Author: jmm
Date: 2013-07-29 16:06:46 +0000 (Mon, 29 Jul 2013)
New Revision: 23132

Modified:
   data/CVE/list
Log:
wireshark triage
one kernel issue N/A for squeeze


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2013-07-29 04:59:27 UTC (rev 23131)
+++ data/CVE/list	2013-07-29 16:06:46 UTC (rev 23132)
@@ -5,6 +5,8 @@
 CVE-2013-4936 [PROFINET Real-Time dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
+	[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
+	[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
 CVE-2013-4935 [ASN.1 PER dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
@@ -19,40 +21,60 @@
 	- wireshark 1.10.1-1
 CVE-2013-4931 [GSM RR dissector (and possibly others) could go into a large loop]
 	RESERVED
-	- wireshark 1.10.1-1
+	- wireshark 1.10.1-1 (unimportant)
+	NOTE: Not suitable for code injection
 CVE-2013-4930 [DVB-CI dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
 CVE-2013-4929 [DIS dissector could go into a large loop]
 	RESERVED
-	- wireshark 1.10.1-1
+	- wireshark 1.10.1-1 (unimportant)
+	NOTE: Not suitable for code injection
 CVE-2013-4928 [Bluetooth OBEX dissector could go into an infinite loop]
 	RESERVED
-	- wireshark 1.10.1-1
+	- wireshark 1.10.1-1 (unimportant)
+	[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
+	[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
+	NOTE: Not suitable for code injection
 CVE-2013-4927 [Bluetooth SDP dissector could go into a large loop]
 	RESERVED
-	- wireshark 1.10.1-1
+	- wireshark 1.10.1-1 (unimportant)
+	NOTE: Not suitable for code injection
 CVE-2013-4926 [DCOM ISystemActivator dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
+	[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
+	[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
 CVE-2013-4925 [DCOM ISystemActivator dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
+	[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
+	[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
 CVE-2013-4924 [DCOM ISystemActivator dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
+	[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
+	[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
 CVE-2013-4923 [DCOM ISystemActivator dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
+	[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
+	[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
 CVE-2013-4922 [DCOM ISystemActivator dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
+	[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
+	[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
 CVE-2013-4921 [Radiotap dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
+	[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
+	[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
 CVE-2013-4920 [P1 dissector crash]
 	RESERVED
 	- wireshark 1.10.1-1
+	[wheezy] - wireshark <not-affected> (Only affects 1.10.x)
+	[squeeze] - wireshark <not-affected> (Only affects 1.10.x)
 CVE-2013-4919
 	RESERVED
 CVE-2013-4918
@@ -32277,6 +32299,7 @@
 CVE-2011-4098 (The fallocate implementation in the GFS2 filesystem in the Linux ...)
 	- linux 3.2.1-1
 	- linux-2.6 <removed>
+	[squeeze] - linux-2.6 <not-affected> (fallocate support was added to GFS2 in 2.37)
 CVE-2011-4097 (Integer overflow in the oom_badness function in mm/oom_kill.c in the ...)
 	- linux-2.6 3.0.0-6
 	[squeeze] - linux-2.6 <not-affected> (Introduced in 2.6.39)

More information about the Secure-testing-commits mailing list