Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7d889c06 by Salvatore Bonaccorso at 2026-01-16T20:53:21+01:00
Track fixed version for wireshark issues via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -613,12 +613,12 @@ CVE-2026-23574
CVE-2026-23512 (SumatraPDF is a multi-format reader for Windows. In 3.5.2 and
earlier, ...)
NOT-FOR-US: SumatraPDF
CVE-2026-0962 (SOME/IP-SD protocol dissector crash in Wireshark 4.6.0 to 4.6.2
and 4. ...)
- - wireshark <unfixed> (bug #1125690)
+ - wireshark 4.6.3-1 (bug #1125690)
NOTE: https://www.wireshark.org/security/wnpa-sec-2026-03.html
NOTE: https://gitlab.com/wireshark/wireshark/-/issues/20945
NOTE: Fixed by:
https://gitlab.com/wireshark/wireshark/-/commit/55ec8b3db4968c97115f014fb5974206cdf57454
CVE-2026-0961 (BLF file parser crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to
4.4.12 ...)
- - wireshark <unfixed> (bug #1125690)
+ - wireshark 4.6.3-1 (bug #1125690)
[bookworm] - wireshark <not-affected> (Vulnerable code not present)
[bullseye] - wireshark <not-affected> (Vulnerable code not present)
NOTE: https://www.wireshark.org/security/wnpa-sec-2026-01.html
@@ -626,12 +626,12 @@ CVE-2026-0961 (BLF file parser crash in Wireshark 4.6.0
to 4.6.2 and 4.4.0 to 4.
NOTE: Fixed by:
https://gitlab.com/wireshark/wireshark/-/commit/516ba22c34bd62468c2967ac476146bc03482679
NOTE: Introduced by:
https://gitlab.com/wireshark/wireshark/-/commit/4e8603b60438650fe3329d5a0a0e8ff0bc96b08c
(v4.3.0)
CVE-2026-0960 (HTTP3 protocol dissector infinite loop in Wireshark 4.6.0 to
4.6.2 all ...)
- - wireshark <unfixed> (bug #1125690; unimportant)
+ - wireshark 4.6.3-1 (bug #1125690; unimportant)
NOTE: https://www.wireshark.org/security/wnpa-sec-2026-04.html
NOTE: https://gitlab.com/wireshark/wireshark/-/issues/20944
NOTE: Hang in CLI tool, no security impact
CVE-2026-0959 (IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to
4.6.2 and 4 ...)
- - wireshark <unfixed> (bug #1125690)
+ - wireshark 4.6.3-1 (bug #1125690)
[bookworm] - wireshark <not-affected> (Vulnerable code not present)
[bullseye] - wireshark <not-affected> (Vulnerable code not present)
NOTE: https://www.wireshark.org/security/wnpa-sec-2026-02.html
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d889c060c30d58f4805e6cafd7a0d4ccde4dbc2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7d889c060c30d58f4805e6cafd7a0d4ccde4dbc2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
