[Secure-testing-commits] r33136 - in data: . CVE
Alessandro Ghedini
ghedo at moszumanska.debian.org
Wed Mar 25 11:11:16 UTC 2015
Author: ghedo
Date: 2015-03-25 11:11:16 +0000 (Wed, 25 Mar 2015)
New Revision: 33136
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
CVE-2015-2188 and CVE-2015-2191 don't affect wireshark in (old)stable
Also remove wireshark from dsa-needed.txt since no issues are left.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-03-25 09:46:46 UTC (rev 33135)
+++ data/CVE/list 2015-03-25 11:11:16 UTC (rev 33136)
@@ -1290,6 +1290,8 @@
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11024
CVE-2015-2191 (Integer overflow in the dissect_tnef function in ...)
- wireshark <unfixed> (bug #780372)
+ [wheezy] - wireshark <not-affected> (Only affects 1.10.x and 1.12.x)
+ [squeeze] - wireshark <not-affected> (Only affects 1.10.x and 1.12.x)
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11023
CVE-2015-2190 (epan/proto.c in Wireshark 1.12.x before 1.12.4 does not properly ...)
- wireshark <unfixed> (bug #780372)
@@ -1303,6 +1305,8 @@
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=10895
CVE-2015-2188 (epan/dissectors/packet-wcp.c in the WCP dissector in Wireshark 1.10.x ...)
- wireshark <unfixed> (bug #780372)
+ [wheezy] - wireshark <not-affected> (Only affects 1.10.x and 1.12.x)
+ [squeeze] - wireshark <not-affected> (Only affects 1.10.x and 1.12.x)
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=10844
CVE-2015-2187 (The dissect_atn_cpdlc_heur function in ...)
- wireshark <unfixed> (bug #780372)
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2015-03-25 09:46:46 UTC (rev 33135)
+++ data/dsa-needed.txt 2015-03-25 11:11:16 UTC (rev 33136)
@@ -65,6 +65,4 @@
--
typo3-src
--
-wireshark
---
zendframework
More information about the Secure-testing-commits
mailing list