[Secure-testing-commits] r54090 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jul 30 18:40:47 UTC 2017
Author: carnil
Date: 2017-07-30 18:40:47 +0000 (Sun, 30 Jul 2017)
New Revision: 54090
Modified:
data/CVE/list
Log:
Update status for CVE-2017-11411
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-30 18:36:44 UTC (rev 54089)
+++ data/CVE/list 2017-07-30 18:40:47 UTC (rev 54090)
@@ -912,6 +912,9 @@
NOT-FOR-US: Fiyo CMS
CVE-2017-11411 (In Wireshark through 2.0.13 and 2.2.x through 2.2.7, the openSAFETY ...)
- wireshark <unfixed>
+ [stretch] - wireshark <not-affected> (Incomplete fix for CVE-2017-9350 not applied)
+ [jessie] - wireshark <not-affected> (Incomplete fix for CVE-2017-9350 not applied)
+ [wheezy] - wireshark <not-affected> (Incomplete fix for CVE-2017-9350 not applied)
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13755
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=a83a324acdfc07a0ca8b65e6ebaba3374ab19c76
NOTE: https://www.wireshark.org/security/wnpa-sec-2017-28.html
@@ -6467,6 +6470,9 @@
- wireshark 2.2.7-1 (bug #864058)
NOTE: https://www.wireshark.org/security/wnpa-sec-2017-28.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13649
+ NOTE: When fixing this entry make sure to apply the complete fix and adding
+ NOTE: the related commits from the CVE-2017-11411. Otherwise those releases
+ NOTE: are opened to CVE-2017-11411, which exists because of an incomplete fix.
CVE-2017-9349 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DICOM dissector ...)
- wireshark 2.2.7-1 (bug #864058)
NOTE: https://www.wireshark.org/security/wnpa-sec-2017-27.html
More information about the Secure-testing-commits
mailing list