[Git][security-tracker-team/security-tracker][master] new wireshark issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Thu Apr 30 14:19:31 BST 2026
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
83a36ed8 by Moritz Muehlenhoff at 2026-04-30T15:17:50+02:00
new wireshark issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -143,19 +143,44 @@ CVE-2026-6531 (SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4
NOTE: https://www.wireshark.org/security/wnpa-sec-2026-30.html
NOTE: https://gitlab.com/wireshark/wireshark/-/work_items/21139
CVE-2026-6530 (DCP-ETSI protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4. ...)
- TODO: check
+ - wireshark <unfixed>
+ NOTE: https://www.wireshark.org/security/wnpa-sec-2026-31.html
+ NOTE: https://gitlab.com/wireshark/wireshark/-/work_items/21144
CVE-2026-6529 (iLBC audio codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 ...)
- TODO: check
+ - wireshark <unfixed>
+ NOTE: https://www.wireshark.org/security/wnpa-sec-2026-32.html
+ NOTE: https://gitlab.com/wireshark/wireshark/-/work_items/21145
CVE-2026-6528 (TLS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 allow ...)
- TODO: check
+ - wireshark <unfixed>
+ [trixie] - wireshark <not-affected> (Only affects 4.6.x)
+ [bookworm] - wireshark <not-affected> (Only affects 4.6.x)
+ NOTE: https://www.wireshark.org/security/wnpa-sec-2026-33.html
+ NOTE: https://gitlab.com/wireshark/wireshark/-/work_items/21151
+ NOTE: https://gitlab.com/wireshark/wireshark/-/work_items/21147
CVE-2026-6527 (ASN.1 PER protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4 ...)
- TODO: check
+ - wireshark <unfixed>
+ [trixie] - wireshark <no-dsa> (Minor issue)
+ [bookworm] - wireshark <no-dsa> (Minor issue)
+ NOTE: https://www.wireshark.org/security/wnpa-sec-2026-34.html
+ NOTE: https://gitlab.com/wireshark/wireshark/-/work_items/21149
CVE-2026-6526 (RTSP protocol dissector crash in Wireshark 4.6.0 to 4.6.4)
- TODO: check
+ - wireshark <unfixed>
+ [trixie] - wireshark <not-affected> (Only affects 4.6.x)
+ [bookworm] - wireshark <not-affected> (Only affects 4.6.x)
+ NOTE: https://www.wireshark.org/security/wnpa-sec-2026-35.html
+ NOTE: https://gitlab.com/wireshark/wireshark/-/work_items/21173
CVE-2026-6524 (MySQL protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 t ...)
- TODO: check
+ - wireshark <unfixed>
+ [trixie] - wireshark <no-dsa> (Minor issue)
+ [bookworm] - wireshark <no-dsa> (Minor issue)
+ NOTE: https://www.wireshark.org/security/wnpa-sec-2026-37.html
+ NOTE: https://gitlab.com/wireshark/wireshark/-/work_items/21172
CVE-2026-6523 (GNW protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4 ...)
- TODO: check
+ - wireshark <unfixed>
+ [trixie] - wireshark <no-dsa> (Minor issue)
+ [bookworm] - wireshark <no-dsa> (Minor issue)
+ NOTE: https://www.wireshark.org/security/wnpa-sec-2026-38.html
+ NOTE: https://gitlab.com/wireshark/wireshark/-/work_items/21177
CVE-2026-6522 (RPKI-Router protocol dissector infinite loop in Wireshark 4.6.0 to 4.6 ...)
TODO: check
CVE-2026-6521 (OpenFlow v5 protocol dissector infinite loops in Wireshark 4.6.0 to 4. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83a36ed8296a67f9bcb5f8ec4ede91de4d411d09
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/83a36ed8296a67f9bcb5f8ec4ede91de4d411d09
You're receiving this email because of your account on salsa.debian.org. Manage all notifications: https://salsa.debian.org/-/profile/notifications | Help: https://salsa.debian.org/help
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20260430/427280a5/attachment.htm>
More information about the debian-security-tracker-commits
mailing list