[Git][security-tracker-team/security-tracker][master] CVE-2020-17498 is not in the wireshark version in buster
Adrian Bunk
bunk at debian.org
Sat Oct 31 22:11:43 GMT 2020
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
96b20a92 by Adrian Bunk at 2020-11-01T00:03:15+02:00
CVE-2020-17498 is not in the wireshark version in buster
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -22375,7 +22375,7 @@ CVE-2020-17499
RESERVED
CVE-2020-17498 (In Wireshark 3.2.0 to 3.2.5, the Kafka protocol dissector could crash. ...)
- wireshark 3.2.6-1
- [buster] - wireshark <postponed> (Can be fixed along in next 3.0.x DSA)
+ [buster] - wireshark <not-affected> (Vulnerable compose_tvb code not present)
[stretch] - wireshark <not-affected> (Vulnerable compose_tvb code not present)
NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16672
NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=76afda963de4f0b9be24f2d8e873990a5cbf221b
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96b20a925612d6fb209d46b46026f3854a5efda3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96b20a925612d6fb209d46b46026f3854a5efda3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201031/8fd2e9e3/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list