Ubuntu CVE Tracker

Merge lp:~teward/ubuntu-cve-tracker/wireshark-cves-february-2015 into lp:~ubuntu-security/ubuntu-cve-tracker/master

  1. wireshark-cves-february-2015
  2. Merge into master
Proposed by Thomas Ward
Status: Merged
Merge reported by: Marc Deslauriers
Merged at revision: not available
Proposed branch: lp:~teward/ubuntu-cve-tracker/wireshark-cves-february-2015
Merge into: lp:~ubuntu-security/ubuntu-cve-tracker/master
Diff against target: 131 lines (+18/-12)
6 files modified
active/CVE-2015-0559 (+3/-2)
active/CVE-2015-0560 (+3/-2)
active/CVE-2015-0561 (+3/-2)
active/CVE-2015-0562 (+3/-2)
active/CVE-2015-0563 (+3/-2)
active/CVE-2015-0564 (+3/-2)
To merge this branch: bzr merge lp:~teward/ubuntu-cve-tracker/wireshark-cves-february-2015
Reviewer Review Type Date Requested Status
Marc Deslauriers Approve
Review via email: mp+248681@code.launchpad.net

Description of the change

This merge request includes changes to the Wireshark CVEs. These changes just update the Vivid status and teh Upstream status for the 2015 CVEs against Wireshark (up to this point).

Upstream wireshark has provided fixes in two of their version branches, 1.10.12 and 1.12.3.

Vivid already has a version of the package from Debian which has the 1.12.3 security patches in them (which is why I marked it 'released' instead of 'not-affected', as it was initially affected).

Utopic has a pending debdiff attached to https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211 to fix these CVEs. I will make another merge request after that has been sponsored and uploaded to address the Utopic "fixed" status.

To post a comment you must log in.
Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

ACK, thanks.

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1=== modified file 'active/CVE-2015-0559'
2--- active/CVE-2015-0559 2015-01-18 23:56:25 +0000
3+++ active/CVE-2015-0559 2015-02-04 21:36:41 +0000
4@@ -12,14 +12,15 @@
5 Ubuntu-Description:
6 Notes:
7 Bugs:
8+ https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
9 Priority: medium
10 Discovered-by:
11 Assigned-to:
12
13 Patches_wireshark:
14-upstream_wireshark: needs-triage
15+upstream_wireshark: released (1.10.12, 1.12.3)
16 lucid_wireshark: ignored (reached end-of-life)
17 precise_wireshark: needed
18 trusty_wireshark: needed
19 utopic_wireshark: needed
20-devel_wireshark: needed
21+devel_wireshark: released (1.12.1+g01b65bf-3)
22
23=== modified file 'active/CVE-2015-0560'
24--- active/CVE-2015-0560 2015-01-18 23:56:25 +0000
25+++ active/CVE-2015-0560 2015-02-04 21:36:41 +0000
26@@ -12,14 +12,15 @@
27 Ubuntu-Description:
28 Notes:
29 Bugs:
30+ https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
31 Priority: medium
32 Discovered-by:
33 Assigned-to:
34
35 Patches_wireshark:
36-upstream_wireshark: needs-triage
37+upstream_wireshark: released (1.10.12, 1.12.3)
38 lucid_wireshark: ignored (reached end-of-life)
39 precise_wireshark: needed
40 trusty_wireshark: needed
41 utopic_wireshark: needed
42-devel_wireshark: needed
43+devel_wireshark: released (1.12.1+g01b65bf-3)
44
45=== modified file 'active/CVE-2015-0561'
46--- active/CVE-2015-0561 2015-01-18 23:56:25 +0000
47+++ active/CVE-2015-0561 2015-02-04 21:36:41 +0000
48@@ -11,14 +11,15 @@
49 Ubuntu-Description:
50 Notes:
51 Bugs:
52+ https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
53 Priority: medium
54 Discovered-by:
55 Assigned-to:
56
57 Patches_wireshark:
58-upstream_wireshark: needs-triage
59+upstream_wireshark: released (1.10.12, 1.12.3)
60 lucid_wireshark: ignored (reached end-of-life)
61 precise_wireshark: needed
62 trusty_wireshark: needed
63 utopic_wireshark: needed
64-devel_wireshark: needed
65+devel_wireshark: released (1.12.1+g01b65bf-3)
66
67=== modified file 'active/CVE-2015-0562'
68--- active/CVE-2015-0562 2015-01-18 23:56:25 +0000
69+++ active/CVE-2015-0562 2015-02-04 21:36:41 +0000
70@@ -13,14 +13,15 @@
71 Ubuntu-Description:
72 Notes:
73 Bugs:
74+ https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
75 Priority: medium
76 Discovered-by:
77 Assigned-to:
78
79 Patches_wireshark:
80-upstream_wireshark: needs-triage
81+upstream_wireshark: released (1.10.12, 1.12.3)
82 lucid_wireshark: ignored (reached end-of-life)
83 precise_wireshark: needed
84 trusty_wireshark: needed
85 utopic_wireshark: needed
86-devel_wireshark: needed
87+devel_wireshark: released (1.12.1+g01b65bf-3)
88
89=== modified file 'active/CVE-2015-0563'
90--- active/CVE-2015-0563 2015-01-18 23:56:25 +0000
91+++ active/CVE-2015-0563 2015-02-04 21:36:41 +0000
92@@ -11,14 +11,15 @@
93 Ubuntu-Description:
94 Notes:
95 Bugs:
96+ https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
97 Priority: medium
98 Discovered-by:
99 Assigned-to:
100
101 Patches_wireshark:
102-upstream_wireshark: needs-triage
103+upstream_wireshark: released (1.10.12, 1.12.3)
104 lucid_wireshark: ignored (reached end-of-life)
105 precise_wireshark: needed
106 trusty_wireshark: needed
107 utopic_wireshark: needed
108-devel_wireshark: needed
109+devel_wireshark: released (1.12.1+g01b65bf-3)
110
111=== modified file 'active/CVE-2015-0564'
112--- active/CVE-2015-0564 2015-01-18 23:56:25 +0000
113+++ active/CVE-2015-0564 2015-02-04 21:36:41 +0000
114@@ -12,14 +12,15 @@
115 Ubuntu-Description:
116 Notes:
117 Bugs:
118+ https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
119 Priority: medium
120 Discovered-by:
121 Assigned-to:
122
123 Patches_wireshark:
124-upstream_wireshark: needs-triage
125+upstream_wireshark: released (1.10.12, 1.12.3)
126 lucid_wireshark: ignored (reached end-of-life)
127 precise_wireshark: needed
128 trusty_wireshark: needed
129 utopic_wireshark: needed
130-devel_wireshark: needed
131+devel_wireshark: released (1.12.1+g01b65bf-3)