[Git][security-tracker-team/security-tracker][master] Remove entries covered by the DLA

Salvatore Bonaccorso carnil at debian.org
Sat Feb 6 21:55:47 GMT 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
46c96ba4 by Salvatore Bonaccorso at 2021-02-06T22:54:22+01:00
Remove entries covered by the DLA

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -25704,7 +25704,6 @@ CVE-2020-28031 (eramba through c2.8.1 allows HTTP Host header injection with (fo
 CVE-2020-28030 (In Wireshark 3.2.0 to 3.2.7, the GQUIC dissector could crash. This was ...)
 	- wireshark 3.2.8-0.1 (bug #974689)
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	NOTE: https://gitlab.com/wireshark/wireshark/-/commit/b287e7165e8aa89cde6ae37e7c257c5d87d16b9b
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/16887
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2020-15.html
@@ -29742,7 +29741,6 @@ CVE-2020-26576
 CVE-2020-26575 (In Wireshark through 3.2.7, the Facebook Zero Protocol (aka FBZERO) di ...)
 	- wireshark 3.2.8-0.1 (bug #974688)
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	NOTE: https://gitlab.com/wireshark/wireshark/-/commit/3ff940652962c099b73ae3233322b8697b0d10ab
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/16887
 	NOTE: https://gitlab.com/wireshark/wireshark/-/merge_requests/467
@@ -30121,7 +30119,6 @@ CVE-2020-26422 (Buffer overflow in QUIC dissector in Wireshark 3.4.0 to 3.4.1 al
 CVE-2020-26421 (Crash in USB HID protocol dissector and possibly other dissectors in W ...)
 	- wireshark 3.4.1-1
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	NOTE: https://gitlab.com/wireshark/wireshark/-/commit/d5f2657825e63e4126ebd7d13a59f3c6e8a9e4e1
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/16958
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2020-17.html
@@ -30142,7 +30139,6 @@ CVE-2020-26419 (Memory leak in the dissection engine in Wireshark 3.4.0 allows d
 CVE-2020-26418 (Memory leak in Kafka protocol dissector in Wireshark 3.4.0 and 3.2.0 t ...)
 	- wireshark 3.4.1-1
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	NOTE: https://gitlab.com/wireshark/wireshark/-/commit/f4374967bbf9c12746b8ec3cd54dddada9dd353e
 	NOTE: https://gitlab.com/wireshark/wireshark/-/commit/c7e6b798255e9d78d88abb84b951ca7815e0f880
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/16739
@@ -31400,13 +31396,11 @@ CVE-2020-25864
 CVE-2020-25863 (In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the ...)
 	- wireshark 3.2.7-1
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2020-11.html
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/16741
 CVE-2020-25862 (In Wireshark 3.2.0 to 3.2.6, 3.0.0 to 3.0.13, and 2.6.0 to 2.6.20, the ...)
 	- wireshark 3.2.7-1
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2020-12.html
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/16816
 CVE-2020-25861
@@ -53705,7 +53699,6 @@ CVE-2020-15467 (The administrative interface of Cohesive Networks vns3:vpn appli
 CVE-2020-15466 (In Wireshark 3.2.0 to 3.2.4, the GVCP dissector could go into an infin ...)
 	- wireshark 3.2.5-1 (low)
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16029
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=11f40896b696e4e8c7f8b2ad96028404a83a51a4
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2020-09.html
@@ -59991,7 +59984,6 @@ CVE-2020-13165
 CVE-2020-13164 (In Wireshark 3.2.0 to 3.2.3, 3.0.0 to 3.0.10, and 2.6.0 to 2.6.16, the ...)
 	- wireshark 3.2.4-1 (low)
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	[jessie] - wireshark <postponed> (Can be fixed along with other CVEs)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16476
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=e6e98eab8e5e0bbc982cfdc808f2469d7cab6c5a
@@ -64876,7 +64868,6 @@ CVE-2020-11648
 CVE-2020-11647 (In Wireshark 3.2.0 to 3.2.2, 3.0.0 to 3.0.9, and 2.6.0 to 2.6.15, the  ...)
 	- wireshark 3.2.3-1 (low; bug #958213)
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	[jessie] - wireshark <postponed> (Minor, can be fixed along in a future update)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16474
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=6f56fc9496db158218243ea87e3660c874a0bab0
@@ -71121,7 +71112,6 @@ CVE-2020-9419
 CVE-2020-9431 (In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the  ...)
 	- wireshark 3.2.2-1
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	[jessie] - wireshark <not-affected> (composite TVB handling added later)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2020-03.html
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16341
@@ -71129,7 +71119,6 @@ CVE-2020-9431 (In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14,
 CVE-2020-9430 (In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the  ...)
 	- wireshark 3.2.2-1
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	[jessie] - wireshark <not-affected> (Vulnerable code not present)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2020-04.html
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16368
@@ -71139,7 +71128,6 @@ CVE-2020-9430 (In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14,
 CVE-2020-9428 (In Wireshark 3.2.0 to 3.2.1, 3.0.0 to 3.0.8, and 2.6.0 to 2.6.14, the  ...)
 	- wireshark 3.2.2-1 (low)
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	[jessie] - wireshark <not-affected> (Vulnerable code not present)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2020-05.html
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16397
@@ -77069,7 +77057,6 @@ CVE-2020-7046 (lib-smtp in submission-login and lmtp in Dovecot 2.3.9 before 2.3
 CVE-2020-7045 (In Wireshark 3.0.x before 3.0.8, the BT ATT dissector could crash. Thi ...)
 	- wireshark 3.2.0-1
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	[jessie] - wireshark <not-affected> (Doesn't support request-respone tracking in affected code passage, yet)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16258
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=01f261de41f4dd3233ef578e5c0ffb9c25c7d14d
@@ -90775,7 +90762,6 @@ CVE-2019-19554
 CVE-2019-19553 (In Wireshark 3.0.0 to 3.0.6 and 2.6.0 to 2.6.12, the CMS dissector cou ...)
 	- wireshark 3.0.7-1 (low)
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	[jessie] - wireshark <postponed> (Can be fixed along in next 1.12.x DLA)
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15961
 	NOTE: https://code.wireshark.org/review/gitweb?p=wireshark.git;a=commit;h=34d2e0d5318d0a7e9889498c721639e5cbf4ce45
@@ -103834,7 +103820,6 @@ CVE-2010-5333 (The web server in Integard Pro and Home before 2.0.0.9037 and 2.2
 CVE-2019-16319 (In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector ...)
 	- wireshark 3.0.4-1 (low)
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	[jessie] - wireshark <not-affected> (Vulnerable code not present)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-21.html
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=16020
@@ -112656,7 +112641,6 @@ CVE-2019-13620
 CVE-2019-13619 (In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the  ...)
 	- wireshark 2.6.10-1 (low)
 	[buster] - wireshark 2.6.20-0+deb10u1
-	[stretch] - wireshark 2.6.20-0+deb9u1
 	[jessie] - wireshark <not-affected> (vulnerable code not present, binary encoding not yet supported)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2019-20.html
 	NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=15870



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/46c96ba41af35dc4230291200e1324c3ee7d9f8c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/46c96ba41af35dc4230291200e1324c3ee7d9f8c
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210206/3449d53c/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list