[Secure-testing-commits] r40160 - in data: . CVE DSA

[Moritz Muehlenhoff]

Author: jmm
Date: 2016-03-04 18:58:41 +0000 (Fri, 04 Mar 2016)
New Revision: 40160

Modified:
   data/CVE/list
   data/DSA/list
   data/dsa-needed.txt
Log:
wireshark DSA


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-03-04 16:57:00 UTC (rev 40159)
+++ data/CVE/list	2016-03-04 18:58:41 UTC (rev 40160)
@@ -4889,7 +4889,6 @@
 	NOTE: http://www.wireshark.org/security/wnpa-sec-2015-41.html
 CVE-2015-8721 (Buffer overflow in the tvb_uncompress function in epan/tvbuff_zlib.c ...)
 	- wireshark 2.0.1+g59ea380-1
-	[wheezy] - wireshark <not-affected> (Vulnerable code not present)
 	[squeeze] - wireshark <end-of-life> (Not supported in Squeeze LTS)
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cec0593ae6c3bca65eff65741c2a10f3de3e0afe
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=11548
@@ -10846,8 +10845,6 @@
 	NOTE: http://seclists.org/bugtraq/2015/Oct/71
 CVE-2015-7830 (The pcapng_read_if_descr_block function in wiretap/pcapng.c in the ...)
 	- wireshark 1.12.8+g5b6e543-1
-	[jessie] - wireshark <no-dsa> (Minor issue, can be included in future DSA)
-	[wheezy] - wireshark <no-dsa> (Minor issue, can be included in future DSA)
 	[squeeze] - wireshark <not-affected> (Vulnerable code not present)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2015-30.html
 CVE-2015-7811
@@ -15582,7 +15579,6 @@
 CVE-2015-6243 (The dissector-table implementation in epan/packet.c in Wireshark ...)
 	{DSA-3367-1}
 	- wireshark 1.12.7+g7fc8978-1
-	[wheezy] - wireshark <not-affected> (Vulnerable code not present)
 	[squeeze] - wireshark <end-of-life> (Not supported in Squeeze LTS)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2015-23.html
 CVE-2015-6244 (The dissect_zbee_secure function in ...)
@@ -15600,7 +15596,6 @@
 CVE-2015-6246 (The dissect_wa_payload function in epan/dissectors/packet-waveagent.c ...)
 	{DSA-3367-1}
 	- wireshark 1.12.7+g7fc8978-1
-	[wheezy] - wireshark <not-affected> (Vulnerable code not present)
 	[squeeze] - wireshark <end-of-life> (Not supported in Squeeze LTS)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2015-26.html
 CVE-2015-6247 (The dissect_openflow_tablemod_v5 function in ...)
@@ -15612,7 +15607,6 @@
 CVE-2015-6248 (The ptvcursor_add function in the ptvcursor implementation in ...)
 	{DSA-3367-1}
 	- wireshark 1.12.7+g7fc8978-1
-	[wheezy] - wireshark <not-affected> (Vulnerable code not present)
 	[squeeze] - wireshark <end-of-life> (Not supported in Squeeze LTS)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2015-28.html
 CVE-2015-6249 (The dissect_wccp2r1_address_table_info function in ...)

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2016-03-04 16:57:00 UTC (rev 40159)
+++ data/DSA/list	2016-03-04 18:58:41 UTC (rev 40160)
@@ -1,3 +1,7 @@
+[04 Mar 2016] DSA-3505-1 wireshark - security update
+	{CVE-2015-7830 CVE-2015-8711 CVE-2015-8712 CVE-2015-8713 CVE-2015-8714 CVE-2015-8715 CVE-2015-8716 CVE-2015-8717 CVE-2015-8718 CVE-2015-8719 CVE-2015-8720 CVE-2015-8721 CVE-2015-8722 CVE-2015-8723 CVE-2015-8724 CVE-2015-8725 CVE-2015-8726 CVE-2015-8727 CVE-2015-8728 CVE-2015-8729 CVE-2015-8730 CVE-2015-8732 CVE-2015-8733}
+	[wheezy] - wireshark 1.8.2-5wheezy17
+	[jessie] - wireshark 1.12.1+g01b65bf-4+deb8u4
 [04 Mar 2016] DSA-3504-1 bsh - security update
 	{CVE-2016-2510}
 	[wheezy] - bsh 2.0b4-12+deb7u1

Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt	2016-03-04 16:57:00 UTC (rev 40159)
+++ data/dsa-needed.txt	2016-03-04 18:58:41 UTC (rev 40160)
@@ -86,7 +86,5 @@
 --
 tomcat8
 --
-wireshark (jmm)
---
 xen
 --