Ubuntu CVE Tracker

Merge lp:~teward/ubuntu-cve-tracker/wireshark-cves-february-2015 into lp:~ubuntu-security/ubuntu-cve-tracker/master

  1. wireshark-cves-february-2015
  2. Merge into master
Proposed by Thomas Ward
Status: Merged
Merge reported by: Marc Deslauriers
Merged at revision: not available
Proposed branch: lp:~teward/ubuntu-cve-tracker/wireshark-cves-february-2015
Merge into: lp:~ubuntu-security/ubuntu-cve-tracker/master
Diff against target: 131 lines (+18/-12)
6 files modified
active/CVE-2015-0559 (+3/-2)
active/CVE-2015-0560 (+3/-2)
active/CVE-2015-0561 (+3/-2)
active/CVE-2015-0562 (+3/-2)
active/CVE-2015-0563 (+3/-2)
active/CVE-2015-0564 (+3/-2)
To merge this branch: bzr merge lp:~teward/ubuntu-cve-tracker/wireshark-cves-february-2015
Reviewer Review Type Date Requested Status
Marc Deslauriers Approve
Review via email: mp+248681@code.launchpad.net

Description of the change

This merge request includes changes to the Wireshark CVEs. These changes just update the Vivid status and teh Upstream status for the 2015 CVEs against Wireshark (up to this point).

Upstream wireshark has provided fixes in two of their version branches, 1.10.12 and 1.12.3.

Vivid already has a version of the package from Debian which has the 1.12.3 security patches in them (which is why I marked it 'released' instead of 'not-affected', as it was initially affected).

Utopic has a pending debdiff attached to https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211 to fix these CVEs. I will make another merge request after that has been sponsored and uploaded to address the Utopic "fixed" status.

To post a comment you must log in.
Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

ACK, thanks.

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
=== modified file 'active/CVE-2015-0559'
--- active/CVE-2015-0559 2015-01-18 23:56:25 +0000
+++ active/CVE-2015-0559 2015-02-04 21:36:41 +0000
@@ -12,14 +12,15 @@
12Ubuntu-Description:12Ubuntu-Description:
13Notes:13Notes:
14Bugs:14Bugs:
15 https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
15Priority: medium16Priority: medium
16Discovered-by:17Discovered-by:
17Assigned-to:18Assigned-to:
1819
19Patches_wireshark:20Patches_wireshark:
20upstream_wireshark: needs-triage21upstream_wireshark: released (1.10.12, 1.12.3)
21lucid_wireshark: ignored (reached end-of-life)22lucid_wireshark: ignored (reached end-of-life)
22precise_wireshark: needed23precise_wireshark: needed
23trusty_wireshark: needed24trusty_wireshark: needed
24utopic_wireshark: needed25utopic_wireshark: needed
25devel_wireshark: needed26devel_wireshark: released (1.12.1+g01b65bf-3)
2627
=== modified file 'active/CVE-2015-0560'
--- active/CVE-2015-0560 2015-01-18 23:56:25 +0000
+++ active/CVE-2015-0560 2015-02-04 21:36:41 +0000
@@ -12,14 +12,15 @@
12Ubuntu-Description:12Ubuntu-Description:
13Notes:13Notes:
14Bugs:14Bugs:
15 https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
15Priority: medium16Priority: medium
16Discovered-by:17Discovered-by:
17Assigned-to:18Assigned-to:
1819
19Patches_wireshark:20Patches_wireshark:
20upstream_wireshark: needs-triage21upstream_wireshark: released (1.10.12, 1.12.3)
21lucid_wireshark: ignored (reached end-of-life)22lucid_wireshark: ignored (reached end-of-life)
22precise_wireshark: needed23precise_wireshark: needed
23trusty_wireshark: needed24trusty_wireshark: needed
24utopic_wireshark: needed25utopic_wireshark: needed
25devel_wireshark: needed26devel_wireshark: released (1.12.1+g01b65bf-3)
2627
=== modified file 'active/CVE-2015-0561'
--- active/CVE-2015-0561 2015-01-18 23:56:25 +0000
+++ active/CVE-2015-0561 2015-02-04 21:36:41 +0000
@@ -11,14 +11,15 @@
11Ubuntu-Description:11Ubuntu-Description:
12Notes:12Notes:
13Bugs:13Bugs:
14 https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
14Priority: medium15Priority: medium
15Discovered-by:16Discovered-by:
16Assigned-to:17Assigned-to:
1718
18Patches_wireshark:19Patches_wireshark:
19upstream_wireshark: needs-triage20upstream_wireshark: released (1.10.12, 1.12.3)
20lucid_wireshark: ignored (reached end-of-life)21lucid_wireshark: ignored (reached end-of-life)
21precise_wireshark: needed22precise_wireshark: needed
22trusty_wireshark: needed23trusty_wireshark: needed
23utopic_wireshark: needed24utopic_wireshark: needed
24devel_wireshark: needed25devel_wireshark: released (1.12.1+g01b65bf-3)
2526
=== modified file 'active/CVE-2015-0562'
--- active/CVE-2015-0562 2015-01-18 23:56:25 +0000
+++ active/CVE-2015-0562 2015-02-04 21:36:41 +0000
@@ -13,14 +13,15 @@
13Ubuntu-Description:13Ubuntu-Description:
14Notes:14Notes:
15Bugs:15Bugs:
16 https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
16Priority: medium17Priority: medium
17Discovered-by:18Discovered-by:
18Assigned-to:19Assigned-to:
1920
20Patches_wireshark:21Patches_wireshark:
21upstream_wireshark: needs-triage22upstream_wireshark: released (1.10.12, 1.12.3)
22lucid_wireshark: ignored (reached end-of-life)23lucid_wireshark: ignored (reached end-of-life)
23precise_wireshark: needed24precise_wireshark: needed
24trusty_wireshark: needed25trusty_wireshark: needed
25utopic_wireshark: needed26utopic_wireshark: needed
26devel_wireshark: needed27devel_wireshark: released (1.12.1+g01b65bf-3)
2728
=== modified file 'active/CVE-2015-0563'
--- active/CVE-2015-0563 2015-01-18 23:56:25 +0000
+++ active/CVE-2015-0563 2015-02-04 21:36:41 +0000
@@ -11,14 +11,15 @@
11Ubuntu-Description:11Ubuntu-Description:
12Notes:12Notes:
13Bugs:13Bugs:
14 https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
14Priority: medium15Priority: medium
15Discovered-by:16Discovered-by:
16Assigned-to:17Assigned-to:
1718
18Patches_wireshark:19Patches_wireshark:
19upstream_wireshark: needs-triage20upstream_wireshark: released (1.10.12, 1.12.3)
20lucid_wireshark: ignored (reached end-of-life)21lucid_wireshark: ignored (reached end-of-life)
21precise_wireshark: needed22precise_wireshark: needed
22trusty_wireshark: needed23trusty_wireshark: needed
23utopic_wireshark: needed24utopic_wireshark: needed
24devel_wireshark: needed25devel_wireshark: released (1.12.1+g01b65bf-3)
2526
=== modified file 'active/CVE-2015-0564'
--- active/CVE-2015-0564 2015-01-18 23:56:25 +0000
+++ active/CVE-2015-0564 2015-02-04 21:36:41 +0000
@@ -12,14 +12,15 @@
12Ubuntu-Description:12Ubuntu-Description:
13Notes:13Notes:
14Bugs:14Bugs:
15 https://bugs.launchpad.net/ubuntu/+source/wireshark/+bug/1418211
15Priority: medium16Priority: medium
16Discovered-by:17Discovered-by:
17Assigned-to:18Assigned-to:
1819
19Patches_wireshark:20Patches_wireshark:
20upstream_wireshark: needs-triage21upstream_wireshark: released (1.10.12, 1.12.3)
21lucid_wireshark: ignored (reached end-of-life)22lucid_wireshark: ignored (reached end-of-life)
22precise_wireshark: needed23precise_wireshark: needed
23trusty_wireshark: needed24trusty_wireshark: needed
24utopic_wireshark: needed25utopic_wireshark: needed
25devel_wireshark: needed26devel_wireshark: released (1.12.1+g01b65bf-3)