[Git][security-tracker-team/security-tracker][master] more wireshark triage

Moritz Muehlenhoff jmm at debian.org
Thu May 24 07:35:35 BST 2018


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
b3c8108e by Moritz Muehlenhoff at 2018-05-24T08:35:05+02:00
more wireshark triage

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -5135,6 +5135,7 @@ CVE-2018-9267 (In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, ...)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-24.html
 CVE-2018-9266 (In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, ...)
 	- wireshark 2.4.6-1
+	[stretch] - wireshark <no-dsa> (Minor issue)
 	[jessie] - wireshark <not-affected> (Vulnerable code not present)
 	[wheezy] - wireshark <not-affected> (Vulnerable code not present)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14481
@@ -5176,7 +5177,9 @@ CVE-2018-9261 (In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the NBAP dissect
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=66bc372716e04d6a8afdf6712583c9b5d11fee55
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-18.html
 CVE-2018-9260 (In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the IEEE 802.15.4 ...)
-	- wireshark 2.4.6-1
+	- wireshark 2.4.6-1 (low)
+	[stretch] - wireshark <no-dsa> (Minor issue)
+	[jessie] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14468
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=14d6f717d8ea27688af48532edb1d29f502ea8f0
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-17.html
@@ -5189,7 +5192,9 @@ CVE-2018-9259 (In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the MP4 dissecto
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=2113179835b37549f245ac7c05ff2b96276893e4
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-15.html
 CVE-2018-9258 (In Wireshark 2.4.0 to 2.4.5, the TCP dissector could crash. This was ...)
-	- wireshark 2.4.6-1
+	- wireshark 2.4.6-1 (low)
+	[stretch] - wireshark <no-dsa> (Minor issue)
+	[jessie] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14472
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=2d4695de1477df60b0188fd581c0c279db601978
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-21.html
@@ -10031,7 +10036,9 @@ CVE-2018-7421 (In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the DMP dissecto
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-06.html
 CVE-2018-7420 (In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the pcapng file parser ...)
 	{DLA-1353-1}
-	- wireshark 2.4.5-1
+	- wireshark 2.4.5-1 (low)
+	[stretch] - wireshark <no-dsa> (Minor issue)
+	[jessie] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14403
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=129e41f9f63885ad8224ef413c2860788fb9e849
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-11.html
@@ -10043,13 +10050,17 @@ CVE-2018-7419 (In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissect
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-14.html
 CVE-2018-7418 (In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the SIGCOMP dissector ...)
 	{DLA-1353-1}
-	- wireshark 2.4.5-1
+	- wireshark 2.4.5-1 (low)
+	[stretch] - wireshark <no-dsa> (Minor issue)
+	[jessie] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14410
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=29d920b8309905dda11ad397596fe8aafc9b4bf7
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-13.html
 CVE-2018-7417 (In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the IPMI dissector ...)
 	{DLA-1353-1}
-	- wireshark 2.4.5-1
+	- wireshark 2.4.5-1 (low)
+	[stretch] - wireshark <no-dsa> (Minor issue)
+	[jessie] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14409
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=81216a176b25dd8a616e11808a951e141a467009
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-12.html
@@ -10271,7 +10282,9 @@ CVE-2018-7338
 	NOTE: https://www.kb.cert.org/vuls/id/475445
 CVE-2018-7337 (In Wireshark 2.4.0 to 2.4.4, the DOCSIS protocol dissector could crash. ...)
 	{DLA-1353-1}
-	- wireshark 2.4.5-1
+	- wireshark 2.4.5-1 (low)
+	[stretch] - wireshark <no-dsa> (Minor issue)
+	[jessie] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=14446
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=511a8b0b546d25413e289dc5a7d3a455a33994c2
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2018-08.html



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b3c8108ee3e95dbb27ce83549793bcb0d3f71ad6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/b3c8108ee3e95dbb27ce83549793bcb0d3f71ad6
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180524/8559a8be/attachment-0001.html>


More information about the debian-security-tracker-commits mailing list