[Secure-testing-commits] r35965 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Aug 10 18:03:31 UTC 2015
Author: carnil
Date: 2015-08-10 18:03:31 +0000 (Mon, 10 Aug 2015)
New Revision: 35965
Modified:
data/CVE/list
Log:
Mark one issue for icedove as not-affecting wheezy and jessie
NOTE: There is contradictory information on that. While Red Hat mentions
the CVE as well in the Thunderbird advisory for 31.8, Ubuntu does not.
CVE description from mitre on the other hand as well would mention all
previous versions as affected. The Mozilla advisory as well does not
mention this issue as fixed in in Thunderbird 31.8:
https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird31.8
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-08-10 17:58:09 UTC (rev 35964)
+++ data/CVE/list 2015-08-10 18:03:31 UTC (rev 35965)
@@ -8697,6 +8697,8 @@
- iceweasel 38.1.0esr-1
[squeeze] - iceweasel <end-of-life>
- icedove 38.1.0-1
+ [jessie] - icedove <not-affected> (Does not affect 31.x ESR Thunderbird)
+ [wheezy] - icedove <not-affected> (Does not affect 31.x ESR Thunderbird)
[squeeze] - icedove <end-of-life>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2015-63/
CVE-2015-2730 (Mozilla Network Security Services (NSS) before 3.19.1, as used in ...)
More information about the Secure-testing-commits
mailing list