[Git][security-tracker-team/security-tracker][master] Two more wireshark CVEs adressed in 10.8
Salvatore Bonaccorso
carnil at debian.org
Sat Feb 6 10:52:35 GMT 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
091e07c9 by Salvatore Bonaccorso at 2021-02-06T11:52:08+01:00
Two more wireshark CVEs adressed in 10.8
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -30111,7 +30111,7 @@ CVE-2020-26422 (Buffer overflow in QUIC dissector in Wireshark 3.4.0 to 3.4.1 al
NOTE: https://www.wireshark.org/security/wnpa-sec-2020-20.html
CVE-2020-26421 (Crash in USB HID protocol dissector and possibly other dissectors in W ...)
- wireshark 3.4.1-1
- [buster] - wireshark <postponed> (Minor issue, can be fixed along in next DSA)
+ [buster] - wireshark 2.6.20-0+deb10u1
[stretch] - wireshark <postponed> (Minor issue, can be fixed in next DLA by backporting patch)
NOTE: https://gitlab.com/wireshark/wireshark/-/commit/d5f2657825e63e4126ebd7d13a59f3c6e8a9e4e1
NOTE: https://gitlab.com/wireshark/wireshark/-/issues/16958
@@ -30132,7 +30132,7 @@ CVE-2020-26419 (Memory leak in the dissection engine in Wireshark 3.4.0 allows d
NOTE: https://www.wireshark.org/security/wnpa-sec-2020-19.html
CVE-2020-26418 (Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 t ...)
- wireshark 3.4.1-1
- [buster] - wireshark <postponed> (Minor issue, can be fixed along in next DSA)
+ [buster] - wireshark 2.6.20-0+deb10u1
[stretch] - wireshark <postponed> (Minor issue, code was reshuffled when support for more recent Kafka versions was added but backporting is trivial)
NOTE: https://gitlab.com/wireshark/wireshark/-/commit/f4374967bbf9c12746b8ec3cd54dddada9dd353e
NOTE: https://gitlab.com/wireshark/wireshark/-/commit/c7e6b798255e9d78d88abb84b951ca7815e0f880
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/091e07c991915dd242cb2d8864484615558cbe01
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/091e07c991915dd242cb2d8864484615558cbe01
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210206/8c2be71b/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list