[Git][security-tracker-team/security-tracker][master] Add CVE-2022-3724/wireshark

Fri Dec 9 20:37:34 GMT 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
187f627c by Salvatore Bonaccorso at 2022-12-09T21:36:33+01:00
Add CVE-2022-3724/wireshark

I went here on the safe side and marked in unimportant, but the crash
seems to be only relevant on Windows system (mich could make the entry
to follow our special exceptions in this case to not-affeced instead.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -11071,7 +11071,10 @@ CVE-2022-3725 (Crash in the OPUS protocol dissector in Wireshark 3.6.0 to 3.6.8
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2022-07.html
 	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/18378
 CVE-2022-3724 (Crash in the USB HID protocol dissector in Wireshark 3.6.0 to 3.6.8 al ...)
-	TODO: check
+	- wireshark 4.0.0-1 (unimportant)
+	NOTE: https://www.wireshark.org/security/wnpa-sec-2022-08.html
+	NOTE: https://gitlab.com/wireshark/wireshark/-/issues/18384
+	NOTE: Crash only triggered on Windows
 CVE-2022-3723 (Type confusion in V8 in Google Chrome prior to 107.0.5304.87 allowed a ...)
 	{DSA-5263-1}
 	- chromium 107.0.5304.87-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/187f627ce4b26569cc97e9d68bea3649b2afcbb9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/187f627ce4b26569cc97e9d68bea3649b2afcbb9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20221209/c10b7c69/attachment.htm>
