diff options
| author | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-01 10:39:48 +0100 |
|---|---|---|
| committer | Salvatore Bonaccorso <carnil@debian.org> | 2022-01-01 10:40:34 +0100 |
| commit | ade2bddd00acba30b01826f976b06e3e651c3a54 (patch) | |
| tree | 57e64b9372f7f8dae96fd8280b703e20e6402af1 | |
| parent | d78520871c328e7f315ad1e1a346d27d928115ed (diff) | |
Add initial tracking for wireshark issues
| -rw-r--r-- | data/CVE/2021.list | 28 |
1 files changed, 21 insertions, 7 deletions
diff --git a/data/CVE/2021.list b/data/CVE/2021.list index 8f34d3e8d5..8e5af18abd 100644 --- a/data/CVE/2021.list +++ b/data/CVE/2021.list @@ -138,7 +138,9 @@ CVE-2021-23147 (Netgear Nighthawk R6700 version 1.0.4.120 does not have sufficie CVE-2021-45919 RESERVED CVE-2021-4190 (Large loop in the Kafka dissector in Wireshark 3.6.0 allows denial of ...) - TODO: check + - wireshark <unfixed> + NOTE: https://www.wireshark.org/security/wnpa-sec-2021-22.html + NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17811 CVE-2021-4189 [ftplib should not use the host from the PASV response] RESERVED - python3.10 <not-affected> (Fixed before initial upload to Debian unstable) @@ -239,17 +241,29 @@ CVE-2021-45886 CVE-2021-45885 (An issue was discovered in Stormshield Network Security (SNS) 4.2.2 th ...) NOT-FOR-US: Stormshield Network Security (SNS) CVE-2021-4186 (Crash in the Gryphon dissector in Wireshark 3.4.0 to 3.4.10 allows den ...) - TODO: check + - wireshark 3.6.0-1 + NOTE: https://www.wireshark.org/security/wnpa-sec-2021-16.html + NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17737 CVE-2021-4185 (Infinite loop in the RTMPT dissector in Wireshark 3.6.0 and 3.4.0 to 3 ...) - TODO: check + - wireshark <unfixed> + NOTE: https://www.wireshark.org/security/wnpa-sec-2021-17.html + NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17745 CVE-2021-4184 (Infinite loop in the BitTorrent DHT dissector in Wireshark 3.6.0 and 3 ...) - TODO: check + - wireshark <unfixed> + NOTE: https://www.wireshark.org/security/wnpa-sec-2021-18.html + NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17754 CVE-2021-4183 (Crash in the pcapng file parser in Wireshark 3.6.0 allows denial of se ...) - TODO: check + - wireshark <unfixed> + NOTE: https://www.wireshark.org/security/wnpa-sec-2021-19.html + NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17755 CVE-2021-4182 (Crash in the RFC 7468 dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 ...) - TODO: check + - wireshark <unfixed> + NOTE: https://www.wireshark.org/security/wnpa-sec-2021-20.html + NOTE: https://gitlab.com/wireshark/wireshark/-/issues/17801 CVE-2021-4181 (Crash in the Sysdig Event dissector in Wireshark 3.6.0 and 3.4.0 to 3. ...) - TODO: check + - wireshark <unfixed> + NOTE: https://www.wireshark.org/security/wnpa-sec-2021-21.html + NOTE: https://gitlab.com/wireshark/wireshark/-/merge_requests/5429 CVE-2021-45884 (In Brave Desktop 1.17 through 1.33 before 1.33.106, when CNAME-based a ...) - brave-browser <itp> (bug #864795) CVE-2021-45883 |