[Secure-testing-commits] r55264 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Aug 30 20:20:35 UTC 2017 

Author: carnil
Date: 2017-08-30 20:20:35 +0000 (Wed, 30 Aug 2017)
New Revision: 55264

Modified:
   data/CVE/list
Log:
Add four new wireshark issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-30 20:16:45 UTC (rev 55263)
+++ data/CVE/list	2017-08-30 20:20:35 UTC (rev 55264)
@@ -31,14 +31,31 @@
 	RESERVED
 CVE-2017-13768
 	RESERVED
-CVE-2017-13767
+CVE-2017-13767 [wnpa-sec-2017-38: MSDP dissector infinite loop]
 	RESERVED
-CVE-2017-13766
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13933
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=6f18ace2a2683418a9368a8dfd92da6bd8213e15
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2017-38.html
+CVE-2017-13766 [wnpa-sec-2017-39: Profinet I/O buffer overrun]
 	RESERVED
-CVE-2017-13765
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13847
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=2096bc1e5078732543e0a3ee115a2ce520a72bbc
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=af7b093ca528516c14247acb545046199d30843e
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2017-39.html
+CVE-2017-13765 [wnpa-sec-2017-41: IrCOMM dissector buffer overrun]
 	RESERVED
-CVE-2017-13764
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13929
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=94666d4357096fc45e3bcad3d9414a14f0831bc8
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2017-41.html
+CVE-2017-13764 [wnpa-sec-2017-40: Modbus dissector crash]
 	RESERVED
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13925
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=b87ffbd12bddf64582c0a6e082b462744474de94
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2017-40.html
 CVE-2017-13763 (ONOS versions 1.8.0, 1.9.0, and 1.10.0 do not restrict the amount of ...)
 	TODO: check
 CVE-2017-13762 (ONOS versions 1.8.0, 1.9.0, and 1.10.0 are vulnerable to XSS. ...)

More information about the Secure-testing-commits mailing list