[Git][security-tracker-team/security-tracker][master] Track fixed version for wireshark issues

Salvatore Bonaccorso carnil at debian.org
Thu Apr 11 14:32:49 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3037ece8 by Salvatore Bonaccorso at 2019-04-11T13:32:18Z
Track fixed version for wireshark issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -412,20 +412,20 @@ CVE-2019-10904 (Roundup 1.6 allows XSS via the URI because frontends/roundup.cgi
 	NOTE: https://issues.roundup-tracker.org/issue2551035
 	NOTE: https://bitbucket.org/python/roundup/commits/51682dc2cd7e28421d749117c25bec58f632ee5f
 CVE-2019-10903 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DCERPC SP ...)
-	- wireshark <unfixed> (low; bug #926718)
+	- wireshark 2.6.8-1 (low; bug #926718)
 	[stretch] - wireshark <postponed> (Can be fixed along in next 2.6.x release)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15568
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=eafdcfa4b6d5187a5326442a82608ab03d9dddcb
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-18.html
 CVE-2019-10902 (In Wireshark 3.0.0, the TSDNS dissector could crash. This was addresse ...)
-	- wireshark <unfixed> (low; bug #926718)
+	- wireshark 2.6.8-1 (low; bug #926718)
 	[stretch] - wireshark <postponed> (Can be fixed along in next 2.6.x release)
 	[jessie] - wireshark <not-affected> (vulnerable code is not present)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15619
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=95571f17d5e2de39735e62e5251583f930c06d51
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-16.html
 CVE-2019-10901 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the LDSS diss ...)
-	- wireshark <unfixed> (low; bug #926718)
+	- wireshark 2.6.8-1 (low; bug #926718)
 	[stretch] - wireshark <postponed> (Can be fixed along in next 2.6.x release)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15620
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cf801a25074f76dc3ae62d8ec53ace75f56ce2cd
@@ -436,7 +436,7 @@ CVE-2019-10900 (In Wireshark 3.0.0, the Rbm dissector could go into an infinite
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=26eee01f57f0a86fb375892c7937eac24ede4610
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-13.html
 CVE-2019-10899 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the SRVLOC di ...)
-	- wireshark <unfixed> (low; bug #926718)
+	- wireshark 2.6.8-1 (low; bug #926718)
 	[stretch] - wireshark <postponed> (Can be fixed along in next 2.6.x release)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15546
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=b16fea2f175a3297edac118c8844c7987d31c1cb
@@ -452,14 +452,14 @@ CVE-2019-10897 (In Wireshark 3.0.0, the IEEE 802.11 dissector could go into an i
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=00d5e9e9fb377f52ab7696f25c1dbc011ef0244d
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-11.html
 CVE-2019-10896 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the DOF disse ...)
-	- wireshark <unfixed> (low; bug #926718)
+	- wireshark 2.6.8-1 (low; bug #926718)
 	[stretch] - wireshark <postponed> (Can be fixed along in next 2.6.x release)
 	[jessie] - wireshark <not-affected> (vulnerable code is not present)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15617
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=441b6d9071d6341e58dfe10719375489c5b8e3f0
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-15.html
 CVE-2019-10895 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the NetScaler ...)
-	- wireshark <unfixed> (low; bug #926718)
+	- wireshark 2.6.8-1 (low; bug #926718)
 	[stretch] - wireshark <postponed> (Can be fixed along in next 2.6.x release)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15497
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=2fbbde780e5d5d82e31dca656217daf278cf62bb
@@ -467,7 +467,7 @@ CVE-2019-10895 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the Net
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=cab0cff6abdd7a5b5b0bfa4ee204eea951e129e9
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-09.html
 CVE-2019-10894 (In Wireshark 2.4.0 to 2.4.13, 2.6.0 to 2.6.7, and 3.0.0, the GSS-API d ...)
-	- wireshark <unfixed> (low; bug #926718)
+	- wireshark 2.6.8-1 (low; bug #926718)
 	[stretch] - wireshark <postponed> (Can be fixed along in next 2.6.x release)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15613
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=b20e5d8aae2580e29c83ddaf0b6b2e640603e4aa



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3037ece86879ac2abac12151768d3c943589200a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3037ece86879ac2abac12151768d3c943589200a
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190411/0ac7e583/attachment.html>

More information about the debian-security-tracker-commits mailing list