[Git][security-tracker-team/security-tracker][master] CVE-2022-434{4,5}wireshark assigned

Salvatore Bonaccorso (@carnil) carnil at debian.org
Thu Jan 12 21:44:31 GMT 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f8dd91c4 by Salvatore Bonaccorso at 2023-01-12T22:44:01+01:00
CVE-2022-434{4,5}wireshark assigned

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8457,12 +8457,12 @@ CVE-2021-4243 (A vulnerability was found in claviska jquery-minicolors up to 2.3
 	[buster] - jquery-minicolors <no-dsa> (Minor issue)
 	NOTE: https://github.com/claviska/jquery-minicolors/releases/tag/2.3.6
 	NOTE: https://github.com/claviska/jquery-minicolors/commit/ef134824a7f4110ada53ea6c173111a4fa2f48f3
-CVE-2022-XXXX [The BPv6, OpenFlow, and Kafka protocol dissectors could go into an infinite loops]
+CVE-2022-4345 [The BPv6, OpenFlow, and Kafka protocol dissectors could go into an infinite loops]
 	- wireshark 4.0.2-1
 	[bullseye] - wireshark <no-dsa> (Minor issue)
 	[buster] - wireshark <postponed> (Minor issue)
 	NOTE: https://www.wireshark.org/security/wnpa-sec-2022-09.html
-CVE-2022-XXXX [The Kafka dissector could consume excessive amounts of memory]
+CVE-2022-4344 [The Kafka dissector could consume excessive amounts of memory]
 	- wireshark 4.0.2-1
 	[bullseye] - wireshark <no-dsa> (Minor issue)
 	[buster] - wireshark <postponed> (Minor issue)
@@ -8964,10 +8964,6 @@ CVE-2022-46769 (An improper neutralization of input during web page generation (
 	NOT-FOR-US: Apache Sling
 CVE-2022-4346
 	RESERVED
-CVE-2022-4345 (Infinite loops in the BPv6, OpenFlow, and Kafka protocol dissectors in ...)
-	TODO: check
-CVE-2022-4344 (Memory exhaustion in the Kafka protocol dissector in Wireshark 4.0.0 t ...)
-	TODO: check
 CVE-2022-4343
 	RESERVED
 CVE-2022-4342 (An issue has been discovered in GitLab CE/EE affecting all versions st ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8dd91c4827043211ba63153d4857bc85d82af75

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f8dd91c4827043211ba63153d4857bc85d82af75
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230112/5cde50f2/attachment.htm>

More information about the debian-security-tracker-commits mailing list