[Secure-testing-commits] r43569 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Jul 28 18:06:22 UTC 2016 

Author: carnil
Date: 2016-07-28 18:06:22 +0000 (Thu, 28 Jul 2016)
New Revision: 43569

Modified:
   data/CVE/list
Log:
Add first batch of new wireshark issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-07-28 17:53:26 UTC (rev 43568)
+++ data/CVE/list	2016-07-28 18:06:22 UTC (rev 43569)
@@ -1,3 +1,34 @@
+CVE-2016-XXXX [MMSE infinite loop (wnpa-sec-2016-43)]
+	- wireshark 2.0
+	NOTE: Only affects 1.12, marking 2.0 as fixed
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2016-43.html
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12624
+	NOTE: Affects 1.12.0 to 1.12.12, fixed 1.12.13
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/07/28/3
+CVE-2016-XXXX [WSP infinite loop (wnpa-sec-2016-42)]
+	- wireshark <unfixed>
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2016-42.html
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12594
+	NOTE: Affects 2.0.0 to 2.0.4, 1.12.0 to 1.12.12 , fixed in 2.0.5, 1.12.13
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/07/28/3
+CVE-2016-XXXX [PacketBB dissector could divide by zero (wnpa-sec-2016-41)]
+	- wireshark <unfixed>
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2016-41.html
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12577
+	NOTE: Affects 2.0.0 to 2.0.4, 1.12.0 to 1.12.12, fixed in 2.0.5, 1.12.13.
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/07/28/3
+CVE-2016-XXXX [NDS dissector crash (wnpa-sec-2016-40)]
+	- wireshark 2.0
+        NOTE: Only affects 1.12, marking 2.0 as fixed
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2016-40.html
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12576
+	NOTE: Affects 1.12.0 to 1.12.12, fixed in 1.12.13.
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/07/28/3
+CVE-2016-XXXX [CORBA IDL dissector crash on 64-bit Windows (wnpa-sec-2016-39)]
+	- wireshark <not-affected> (Only affects Wireshark on Windows)
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2016-39.html
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=12495
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/07/28/3
 CVE-2016-6490 [virtio: infinite loop in virtqueue_pop]
 	- qemu <unfixed> (bug #832767)
 	- qemu-kvm <removed>

More information about the Secure-testing-commits mailing list