[Git][security-tracker-team/security-tracker][master] Add wireshark issues

Salvatore Bonaccorso carnil at debian.org
Tue Apr 9 09:24:41 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9b9e38dd by Salvatore Bonaccorso at 2019-04-09T08:22:32Z
Add wireshark issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -272,25 +272,60 @@ CVE-2019-10904 (Roundup 1.6 allows XSS via the URI because frontends/roundup.cgi
 	NOTE: https://issues.roundup-tracker.org/issue2551035
 	NOTE: https://bitbucket.org/python/roundup/commits/51682dc2cd7e28421d749117c25bec58f632ee5f
 CVE-2019-10903 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SP ...)
-	TODO: check
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15568
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=eafdcfa4b6d5187a5326442a82608ab03d9dddcb
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-18.html
 CVE-2019-10902 (In Wireshark 3.0.0, the TSDNS dissector could crash. This was addresse ...)
-	TODO: check
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15619
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=95571f17d5e2de39735e62e5251583f930c06d51
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-16.html
 CVE-2019-10901 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS diss ...)
-	TODO: check
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15620
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cf801a25074f76dc3ae62d8ec53ace75f56ce2cd
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-17.html
 CVE-2019-10900 (In Wireshark 3.0.0, the Rbm dissector could go into an infinite loop.  ...)
-	TODO: check
+	- wireshark <undetermined>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15612
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=26eee01f57f0a86fb375892c7937eac24ede4610
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-13.html
+	TODO: check, possibly only 3.0.0
 CVE-2019-10899 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC di ...)
-	TODO: check
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15546
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=b16fea2f175a3297edac118c8844c7987d31c1cb
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-10.html
 CVE-2019-10898 (In Wireshark 3.0.0, the GSUP dissector could go into an infinite loop. ...)
-	TODO: check
+	- wireshark <undetermined>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15585
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=f80b7d1b279fb6c13f640019a1bbc42b18bf7469
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-12.html
+	TODO: check, possibly only 3.0.0
 CVE-2019-10897 (In Wireshark 3.0.0, the IEEE 802.11 dissector could go into an infinit ...)
-	TODO: check
+	- wireshark <undetermined>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15553
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=00d5e9e9fb377f52ab7696f25c1dbc011ef0244d
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-11.html
+	TODO: check, possibly only 3.0.0
 CVE-2019-10896 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DOF disse ...)
-	TODO: check
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15617
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=441b6d9071d6341e58dfe10719375489c5b8e3f0
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-15.html
 CVE-2019-10895 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler ...)
-	TODO: check
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15497
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=2fbbde780e5d5d82e31dca656217daf278cf62bb
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=38680c4c69f9f4e0f39e29b66fe2b02d88eb629d
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cab0cff6abdd7a5b5b0bfa4ee204eea951e129e9
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-09.html
 CVE-2019-10894 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API d ...)
-	TODO: check
+	- wireshark <unfixed>
+	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15613
+	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=b20e5d8aae2580e29c83ddaf0b6b2e640603e4aa
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-14.html
 CVE-2019-10893
 	RESERVED
 CVE-2019-10892



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9b9e38dd2bdcfab01f90143e403b2d8d29d13999

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9b9e38dd2bdcfab01f90143e403b2d8d29d13999
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190409/54c9f34e/attachment.html>

More information about the debian-security-tracker-commits mailing list