oss-sec mailing list archives
Re: CVE assignments for Wireshark
From: Josh Bressers <bressers () redhat com>
Date: Mon, 31 Jan 2011 09:32:53 -0500 (EST)
----- Original Message -----
On 01/13/2011 04:21 AM, Steven M. Christey wrote:CVE-2011-0444 - MAC-LTE CVE-2011-0445 - ASN.1 BERLooking at the following wireshark bug and the relevant commits: https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5530 http://anonsvn.wireshark.org/viewvc?view=rev&revision=35292 http://anonsvn.wireshark.org/viewvc?view=rev&revision=35298 It seems that there are two issues here, buffer overflow in MAC-LTE dissector as well as buffer overflow in SNMP engineID preferences. This issue was however assigned only one CVE i.e. CVE-2011-0444. Do you think two CVEs (for each individual issues), should be assigned in this case?
Hi Steve,
Can MITRE handle this one?
Thanks.
--
JB
Current thread:
- CVE assignments for Wireshark Steven M. Christey (Jan 12)
- Re: CVE assignments for Wireshark Huzaifa Sidhpurwala (Jan 19)
- Re: CVE assignments for Wireshark Josh Bressers (Jan 31)
- Re: CVE assignments for Wireshark Josh Bressers (Feb 09)
- Re: CVE assignments for Wireshark Josh Bressers (Jan 31)
- Re: CVE assignments for Wireshark Huzaifa Sidhpurwala (Jan 19)