[Git][security-tracker-team/security-tracker][master] wireshark postponed, NFU
Moritz Muehlenhoff
jmm at debian.org
Mon Mar 2 10:13:35 GMT 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
9c6b984b by Moritz Muehlenhoff at 2020-03-02T11:13:02+01:00
wireshark postponed, NFU
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -276,12 +276,16 @@ CVE-2020-9419
RESERVED
CVE-2020-9431 (In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the ...)
- wireshark 3.2.2-1
+ [buster] - wireshark <postponed> (Can be fixed along in next 3.0.x DSA)
+ [stretch] - wireshark <postponed> (Can be fixed along in next DSA/update to 3.0)
[jessie] - wireshark <postponed> (Minor issue, can be fixed along in next DLA)
NOTE: https://www.wireshark.org/security/wnpa-sec-2020-03.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16341
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=086003c9d616906e08bbeeab9c17b3aa4c6ff850
CVE-2020-9430 (In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the ...)
- wireshark 3.2.2-1
+ [buster] - wireshark <postponed> (Can be fixed along in next 3.0.x DSA)
+ [stretch] - wireshark <postponed> (Can be fixed along in next DSA/update to 3.0)
[jessie] - wireshark <postponed> (Minor issue, can be fixed along in next DLA)
NOTE: https://www.wireshark.org/security/wnpa-sec-2020-04.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16368
@@ -289,7 +293,9 @@ CVE-2020-9430 (In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14,
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=6b98dc63701b1da1cc7681cb383dabb0b7007d73
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=93d6b03a67953b82880cdbdcf0d30e2a3246d790
CVE-2020-9428 (In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the ...)
- - wireshark 3.2.2-1
+ - wireshark 3.2.2-1 (low)
+ [buster] - wireshark <postponed> (Can be fixed along in next 3.0.x DSA)
+ [stretch] - wireshark <postponed> (Can be fixed along in next DSA/update to 3.0)
[jessie] - wireshark <postponed> (Minor issue, can be fixed along in next DLA)
NOTE: https://www.wireshark.org/security/wnpa-sec-2020-05.html
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16397
@@ -67932,7 +67938,7 @@ CVE-2019-3699 (UNIX Symbolic Link (Symlink) Following vulnerability in the packa
CVE-2019-3698 (UNIX Symbolic Link (Symlink) Following vulnerability in the cronjob sh ...)
TODO: check
CVE-2019-3697 (UNIX Symbolic Link (Symlink) Following vulnerability in the packaging ...)
- TODO: check
+ NOT-FOR-US: SuSE-specific issue in gnump3d (removed for a decade from Debian)
CVE-2019-3696
RESERVED
CVE-2019-3695
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c6b984beb7bd459efdbec0ee76f585f38a3435f
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9c6b984beb7bd459efdbec0ee76f585f38a3435f
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200302/8364fc32/attachment.html>
More information about the debian-security-tracker-commits
mailing list