DSA-1983-1: wrong CVE?

To: Debian-security-tracker <debian-security-tracker@lists.debian.org>
Subject: DSA-1983-1: wrong CVE?
From: Francesco Poli <frx@firenze.linux.it>
Date: Sun, 31 Jan 2010 16:03:12 +0100
Message-id: <[🔎] 20100131160312.7953826e.frx@firenze.linux.it>

Hi everybody,
DSA-1983-1 has just been issued about two wireshark vulnerabilities.

The DSA, as well as the corresponding tracker page, mentions
CVE-2009-4337, which however seems to be a vulnerability of typo3.

I am under the impression that this is a mistyped CVE number: maybe the
correct CVE is CVE-2009-4377 ...

Please clarify and/or fix the tracker info...

-- 
 http://www.inventati.org/frx/progs/scripts/pdebuild-hooks.html
 Need some pdebuild hook scripts?
..................................................... Francesco Poli .
 GnuPG key fpr == C979 F34B 27CE 5CD8 DC12  31B5 78F4 279B DD6D FCF4

Attachment: pgpmXvQReJRxT.pgp
Description: PGP signature

Reply to:

Follow-Ups:
- Re: DSA-1983-1: wrong CVE?
  - From: Giuseppe Iuculano <giuseppe@iuculano.it>

Prev by Date: Re: Proposed refactoring of the per-release tracker pages
Next by Date: Re: DSA-1983-1: wrong CVE?
Previous by thread: Re: request-tracker3.6 update
Next by thread: Re: DSA-1983-1: wrong CVE?
Index(es):
- Date
- Thread