jmm-guest at alioth.debian.org
2007-Nov-27 00:23 UTC
[Secure-testing-commits] r7403 - data/CVE
Author: jmm-guest Date: 2007-11-27 00:23:26 +0000 (Tue, 27 Nov 2007) New Revision: 7403 Modified: data/CVE/list Log: record suite-specific not-affected notes for latest wireshark DSA Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-11-26 23:26:38 UTC (rev 7402) +++ data/CVE/list 2007-11-27 00:23:26 UTC (rev 7403) @@ -6,24 +6,38 @@ - rails <unfixed> (low; bug #452748) CVE-2007-6111 [multiple security issues leading to denial of service] - wireshark 0.99.7~pre1-1 (low) + [etch] - wireshark <not-affected> (Vulnerable code not present) + [sarge] - ethereal <not-affected> (Vulnerable code not present) CVE-2007-6112 [buffer overflow in ppp dissector] - wireshark 0.99.7~pre1-1 (medium) + [etch] - wireshark <not-affected> (Vulnerable code not present) + [sarge] - ethereal <not-affected> (Vulnerable code not present) CVE-2007-6113 [remote denial of service via malformed dnp paket] - wireshark 0.99.7~pre1-1 (low) + NOTE: This is likely a dupe of CVE-2007-4721, pinged MITRE CVE-2007-6114 [multiple buffer overflows in SSL dissector] - wireshark 0.99.7~pre1-1 (medium) + [sarge] - ethereal <not-affected> (Vulnerable code not present) CVE-2007-6115 [buffer overflow in ANSI MAP dissector] - wireshark 0.99.7~pre1-1 (medium) + [etch] - wireshark <not-affected> (Vulnerable code not present) + [sarge] - ethereal <not-affected> (Vulnerable code not present) CVE-2007-6116 [infinite loop in firebird/interbase dissector] - wireshark 0.99.7~pre1-1 (low) + [etch] - wireshark <not-affected> (Vulnerable code not present) + [sarge] - ethereal <not-affected> (Vulnerable code not present) CVE-2007-6117 [unspecified vulnerability in HTTP dissector] - wireshark 0.99.7~pre1-1 + [sarge] - ethereal <not-affected> (Vulnerable code not present) CVE-2007-6118 [loop in MEGACO dissector] - wireshark 0.99.7~pre1-1 (low) CVE-2007-6119 [loop in DCP ETSI dissector] - wireshark 0.99.7~pre1-1 (low) + [etch] - wireshark <not-affected> (Vulnerable code not present) + [sarge] - ethereal <not-affected> (Vulnerable code not present) CVE-2007-6120 [infinite loop in bluetooth SDP dissector] - wireshark 0.99.7~pre1-1 (low) + [sarge] - ethereal <not-affected> (Vulnerable code not present) CVE-2007-6121 [remote denial of service via malformed RPC portmap paket] - wireshark 0.99.7~pre1-1 (low) CVE-2007-6038 (PHP remote file inclusion vulnerability in xajax_functions.php in the ...)