[Secure-testing-commits] r28887 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Sep 18 07:09:20 UTC 2014
Author: carnil
Date: 2014-09-18 07:09:20 +0000 (Thu, 18 Sep 2014)
New Revision: 28887
Modified:
data/CVE/list
Log:
Add CVE-2014-6421/wireshark, with TODO item
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-09-18 07:07:39 UTC (rev 28886)
+++ data/CVE/list 2014-09-18 07:09:20 UTC (rev 28887)
@@ -7,6 +7,10 @@
[wheezy] - linux <not-affected> (Introduced in 3.7)
- linux-2.6 <not-affected> (Introduced in 3.7)
NOTE: upstream fix: https://github.com/torvalds/linux/commit/18f39e7be0121317550d03e267e3ebd4dbfbb3ce (v3.17-rc2)
+CVE-2014-6421 [RTP dissector crash (wnpa-sec-2014-12)]
+ - wireshark <unfixed>
+ NOTE: https://www.wireshark.org/security/wnpa-sec-2014-12.html
+ TODO: check
CVE-2014-6418 [libceph: missing validation of the auth reply]
- linux <unfixed>
- linux-2.6 <removed>
More information about the Secure-testing-commits
mailing list