[Secure-testing-commits] r52227 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2017-06-02 09:27:30 +0000 (Fri, 02 Jun 2017)
New Revision: 52227

Modified:
   data/CVE/list
Log:
new wireshark issues


Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-06-02 09:10:13 UTC (rev 52226)
+++ data/CVE/list       2017-06-02 09:27:30 UTC (rev 52227)
@@ -26,29 +26,60 @@
 CVE-2017-9355
        RESERVED
 CVE-2017-9354 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the RGMP 
dissector ...)
-       TODO: check
+       - wireshark <unfixed>
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-32.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13646
 CVE-2017-9353 (In Wireshark 2.2.0 to 2.2.6, the IPv6 dissector could crash. 
This was ...)
-       TODO: check
+       - wireshark <unfixed>
+       [jessie] - wireshark <not-affected> (Only affects 2.2.x)
+       [wheezy] - wireshark <not-affected> (Only affects 2.2.x)
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-33.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13675
 CVE-2017-9352 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bazaar 
dissector ...)
-       TODO: check
+       - wireshark <unfixed>
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-22.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13599
 CVE-2017-9351 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DHCP 
dissector ...)
-       TODO: check
+       - wireshark <unfixed>
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-24.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13628
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13609
 CVE-2017-9350 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the openSAFETY 
...)
-       TODO: check
+       - wireshark <unfixed>
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-28.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13649
 CVE-2017-9349 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DICOM 
dissector ...)
-       TODO: check
+       - wireshark <unfixed>
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-27.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13685
 CVE-2017-9348 (In Wireshark 2.2.0 to 2.2.6, the DOF dissector could read past 
the end ...)
-       TODO: check
+       - wireshark <unfixed>
+       [jessie] - wireshark <not-affected> (Only affects 2.2.x)
+       [wheezy] - wireshark <not-affected> (Only affects 2.2.x)
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-23.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13608
 CVE-2017-9347 (In Wireshark 2.2.0 to 2.2.6, the ROS dissector could crash with 
a NULL ...)
-       TODO: check
+       - wireshark <unfixed>
+       [jessie] - wireshark <not-affected> (Only affects 2.2.x)
+       [wheezy] - wireshark <not-affected> (Only affects 2.2.x)
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-31.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13637
 CVE-2017-9346 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the SoulSeek 
dissector ...)
-       TODO: check
+       - wireshark <unfixed>
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-25.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13631
 CVE-2017-9345 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the DNS 
dissector ...)
-       TODO: check
+       - wireshark <unfixed>
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-26.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13633
 CVE-2017-9344 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the Bluetooth 
L2CAP ...)
-       TODO: check
+       - wireshark <unfixed>
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-29.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13701
 CVE-2017-9343 (In Wireshark 2.2.0 to 2.2.6 and 2.0.0 to 2.0.12, the MSNIP 
dissector ...)
-       TODO: check
+       - wireshark <unfixed>
+       NOTE: https://www.wireshark.org/security/wnpa-sec-2017-30.html
+       NOTE: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=13725
 CVE-2017-9342
        RESERVED
 CVE-2017-9341


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits