[Git][security-tracker-team/security-tracker][master] mark those wireshark issues as no-dsa which aren't going to be included in buster DSA

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Dec 10 16:03:00 GMT 2021



Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dfa509f0 by Moritz Muehlenhoff at 2021-12-10T17:02:30+01:00
mark those wireshark issues as no-dsa which aren't going to be included in buster DSA

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15213,10 +15213,12 @@ CVE-2021-39930
 	- gitlab <unfixed>
 CVE-2021-39929 (Uncontrolled Recursion in the Bluetooth DHT dissector in Wireshark 3.4 ...)
 	- wireshark 3.6.0-1
+	[buster] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17651
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-07.html
 CVE-2021-39928 (NULL pointer exception in the IEEE 802.11 dissector in Wireshark 3.4.0 ...)
 	- wireshark 3.6.0-1
+	[buster] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17704
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-13.html
 CVE-2021-39927
@@ -15232,22 +15234,27 @@ CVE-2021-39925 (Buffer overflow in the Bluetooth SDP dissector in Wireshark 3.4.
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-09.html
 CVE-2021-39924 (Large loop in the Bluetooth DHT dissector in Wireshark 3.4.0 to 3.4.9  ...)
 	- wireshark 3.6.0-1
+	[buster] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17677
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-10.html
 CVE-2021-39923 (Large loop in the PNRP dissector in Wireshark 3.4.0 to 3.4.9 and 3.2.0 ...)
 	- wireshark 3.6.0-1
+	[buster] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17705
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-15.html
 CVE-2021-39922 (Buffer overflow in the C12.22 dissector in Wireshark 3.4.0 to 3.4.9 an ...)
 	- wireshark 3.6.0-1
+	[buster] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17636
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-12.html
 CVE-2021-39921 (NULL pointer exception in the Modbus dissector in Wireshark 3.4.0 to 3 ...)
 	- wireshark 3.6.0-1
+	[buster] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17703
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-14.html
 CVE-2021-39920 (NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3 ...)
 	- wireshark 3.6.0-1
+	[buster] - wireshark <no-dsa> (Minor issue)
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17705
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-15.html
 CVE-2021-39919
@@ -58616,7 +58623,7 @@ CVE-2021-22236 (Due to improper handling of OAuth client IDs, new subscriptions
 CVE-2021-22235 (Crash in DNP dissector in Wireshark 3.4.0 to 3.4.6 and 3.2.0 to 3.2.14 ...)
 	[experimental] - wireshark 3.4.7-1~exp1
 	- wireshark 3.4.7-1
-	[buster] - wireshark <postponed> (Minor issue, can be fixed along in future update)
+	[buster] - wireshark <no-dsa> (Minor issue)
 	[stretch] - wireshark <postponed> (Minor issue)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-06.html
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17462
@@ -58687,7 +58694,7 @@ CVE-2021-22208 (An issue has been discovered in GitLab affecting versions starti
 CVE-2021-22207 (Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to ...)
 	[experimental] - wireshark 3.4.6-1~exp1
 	- wireshark 3.4.7-1 (bug #987853)
-	[buster] - wireshark <postponed> (Minor issue, can be fixed along in future update)
+	[buster] - wireshark <no-dsa> (Minor issue)
 	[stretch] - wireshark <postponed> (Minor issue, can be fixed along in future update)
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17331
 	NOTE: https://gitlab.com/wireshark/wireshark/-/commit/b7a0650e061b5418ab4a8f72c6e4b00317aff623
@@ -58728,7 +58735,7 @@ CVE-2021-22192 (An issue has been discovered in GitLab CE/EE affecting all versi
 	- gitlab <unfixed>
 CVE-2021-22191 (Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11  ...)
 	- wireshark 3.4.4-1
-	[buster] - wireshark <postponed> (Minor issue, can be fixed along in future update)
+	[buster] - wireshark <no-dsa> (Minor issue)
 	[stretch] - wireshark <postponed> (Minor issue, can be fixed along in future update)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2021-03.html
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17232



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfa509f0b1e4b51ca333af8406ffb600a684932a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/dfa509f0b1e4b51ca333af8406ffb600a684932a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211210/4518b63e/attachment.htm>


More information about the debian-security-tracker-commits mailing list