[Git][security-tracker-team/security-tracker][master] CVE-2023-2854 does not affect buster or bullseye
Adrian Bunk (@bunk)
bunk at debian.org
Fri Jun 2 17:39:53 BST 2023
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
abc4acf5 by Adrian Bunk at 2023-06-02T19:37:40+03:00
CVE-2023-2854 does not affect buster or bullseye
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -684,9 +684,11 @@ CVE-2023-2854 (BLF file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.
[experimental] - wireshark 4.0.6-1~exp1
- wireshark <unfixed>
[bookworm] - wireshark <no-dsa> (Minor issue)
- [bullseye] - wireshark <no-dsa> (Minor issue)
+ [bullseye] - wireshark <not-affected> (vulnerable code introduced in 4.0)
+ [buster] - wireshark <not-affected> (vulnerable code introduced in 4.0)
NOTE: https://www.wireshark.org/security/wnpa-sec-2023-17.html
NOTE: https://gitlab.com/wireshark/wireshark/-/issues/19084
+ NOTE: Introduced by: https://gitlab.com/wireshark/wireshark/-/commit/19ed05756313a0181fd3188eae0557f688bfddaf (4.0)
CVE-2023-2856 (VMS TCPIPtrace file parser crash in Wireshark 4.0.0 to 4.0.5 and 3.6.0 ...)
[experimental] - wireshark 4.0.6-1~exp1
- wireshark <unfixed>
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abc4acf5e8bb9f229e1f2323f37897ad4eb34f69
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abc4acf5e8bb9f229e1f2323f37897ad4eb34f69
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230602/a220d4f8/attachment.htm>
More information about the debian-security-tracker-commits
mailing list