Author: jmm
Date: 2012-12-25 10:46:06 +0000 (Tue, 25 Dec 2012)
New Revision: 20702
Modified:
data/CVE/list
Log:
fix some wireshark issues not suitable for code injection
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-12-25 10:41:16 UTC (rev 20701)
+++ data/CVE/list 2012-12-25 10:46:06 UTC (rev 20702)
@@ -6915,17 +6915,23 @@
- wireshark 1.8.2-1
[squeeze] - wireshark <not-affected> (Only affects 1.8.x)
CVE-2012-4293 (plugins/ethercat/packet-ecatmb.c in the EtherCAT Mailbox
dissector in ...)
- - wireshark 1.8.2-1
+ - wireshark 1.8.2-1 (unimportant)
+ NOTE: not suitable for code injection
CVE-2012-4292 (The dissect_stun_message function in
epan/dissectors/packet-stun.c in ...)
- - wireshark 1.8.2-1
+ - wireshark 1.8.2-1 (unimportant)
+ NOTE: not suitable for code injection
CVE-2012-4291 (The CIP dissector in Wireshark 1.4.x before 1.4.15, 1.6.x
before ...)
- - wireshark 1.8.2-1
+ - wireshark 1.8.2-1 (unimportant)
+ NOTE: not suitable for code injection
CVE-2012-4290 (The CTDB dissector in Wireshark 1.4.x before 1.4.15, 1.6.x
before ...)
- - wireshark 1.8.2-1
+ - wireshark 1.8.2-1 (unimportant)
+ NOTE: not suitable for code injection
CVE-2012-4289 (epan/dissectors/packet-afp.c in the AFP dissector in Wireshark
1.4.x ...)
- - wireshark 1.8.2-1
+ - wireshark 1.8.2-1 (unimportant)
+ NOTE: not suitable for code injection
CVE-2012-4288 (Integer overflow in the dissect_xtp_ecntl function in ...)
- - wireshark 1.8.2-1
+ - wireshark 1.8.2-1 (unimportant)
+ NOTE: not suitable for code injection
CVE-2012-4287 (epan/dissectors/packet-mongo.c in the MongoDB dissector in
Wireshark ...)
- wireshark 1.8.2-1
[squeeze] - wireshark <not-affected> (Only affects 1.8.x)
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
