[Secure-testing-commits] r54813 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu Aug 17 15:19:55 UTC 2017 

Author: jmm
Date: 2017-08-17 15:19:55 +0000 (Thu, 17 Aug 2017)
New Revision: 54813

Modified:
   data/CVE/list
Log:
wireshark fixed


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-17 15:18:19 UTC (rev 54812)
+++ data/CVE/list	2017-08-17 15:19:55 UTC (rev 54813)
@@ -4184,7 +4184,7 @@
 CVE-2017-11412 (Fiyo CMS 2.0.7 has SQL injection in ...)
 	NOT-FOR-US: Fiyo CMS
 CVE-2017-11411 (In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY ...)
-	- wireshark <unfixed> (bug #870179)
+	- wireshark 2.4.0-1 (bug #870179)
 	[stretch] - wireshark <not-affected> (Incomplete fix for CVE-2017-9350 not applied)
 	[jessie] - wireshark <not-affected> (Incomplete fix for CVE-2017-9350 not applied)
 	[wheezy] - wireshark <not-affected> (Incomplete fix for CVE-2017-9350 not applied)
@@ -4192,7 +4192,7 @@
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=a83a324acdfc07a0ca8b65e6ebaba3374ab19c76
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2017-28.html
 CVE-2017-11410 (In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the WBXML ...)
-	- wireshark <unfixed> (bug #870180)
+	- wireshark 2.4.0-1 (bug #870180)
 	[jessie] - wireshark <not-affected> (Incomplete fix for CVE-2017-7702 not applied)
 	[wheezy] - wireshark <not-affected> (Incomplete fix for CVE-2017-7702 not applied)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13796
@@ -4207,18 +4207,18 @@
 	NOTE: after 2.1.0 from upstream. Upstream changed the types in llc_gprs_dissect_xid
 	NOTE: in version 2.1.0.
 CVE-2017-11408 (In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the AMQP dissector ...)
-	- wireshark <unfixed> (bug #870172)
+	- wireshark 2.4.0-1 (bug #870172)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13780
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=a102c172b0b2fe231fdb49f4f6694603f5b93b0c
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=e57c86ef8e3b57b7f90c224f6053d1eacf20e1ba
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2017-34.html
 CVE-2017-11407 (In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the MQ dissector could ...)
-	- wireshark <unfixed> (bug #870172)
+	- wireshark 2.4.0-1 (bug #870172)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13792
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=4e54dae7f0d7840836ee6d5ce1e688f152ab2978
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2017-35.html
 CVE-2017-11406 (In Wireshark 2.2.0 to 2.2.7 and 2.0.0 to 2.0.13, the DOCSIS dissector ...)
-	- wireshark <unfixed> (bug #870172)
+	- wireshark 2.4.0-1 (bug #870172)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13797
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=250216263c3a3f2c651e80d9c6b3dc0adc53dc2c
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2017-36.html
@@ -8506,7 +8506,7 @@
 CVE-2017-9767
 	RESERVED
 CVE-2017-9766 (In Wireshark 2.2.7, PROFINET IO data with a high recursion depth allows ...)
-	- wireshark <unfixed> (bug #870175)
+	- wireshark 2.4.0-1 (bug #870175)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13811
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=d6e888400ba64de3147d1111a4c23edf389b0000
 CVE-2017-9765 (Integer overflow in the soap_get function in Genivia gSOAP 2.7.x and ...)
@@ -9071,10 +9071,10 @@
 	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698044
 	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=3c2aebbedd37fab054e80f2e315de07d7e9b5bdb
 CVE-2017-9617 (In Wireshark 2.2.7, deeply nested DAAP data may cause stack exhaustion ...)
-	- wireshark <unfixed> (low; bug #870174)
+	- wireshark 2.4.0-1 (low; bug #870174)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13799
 CVE-2017-9616 (In Wireshark 2.2.7, overly deep mp4 chunks may cause stack exhaustion ...)
-	- wireshark <unfixed> (low; bug #870173)
+	- wireshark 2.4.0-1 (low; bug #870173)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13777
 CVE-2017-9615 (Password exposure in Cognito Software Moneyworks 8.0.3 and earlier ...)
 	NOT-FOR-US: Cognito Software Moneyworks

More information about the Secure-testing-commits mailing list