[Secure-testing-commits] r40444 - in data: . CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Thu Mar 17 18:32:19 UTC 2016
Author: jmm
Date: 2016-03-17 18:32:19 +0000 (Thu, 17 Mar 2016)
New Revision: 40444
Modified:
data/CVE/list
data/dsa-needed.txt
Log:
icedove issues, take DSA
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-03-17 17:59:03 UTC (rev 40443)
+++ data/CVE/list 2016-03-17 18:32:19 UTC (rev 40444)
@@ -1409,6 +1409,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2801 (The graphite2::TtfUtil::CmapSubtable12Lookup function in TtfUtil.cpp ...)
@@ -1416,6 +1417,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2800 (The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before ...)
@@ -1423,6 +1425,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2799 (Heap-based buffer overflow in the graphite2::Slot::setAttr function in ...)
@@ -1430,6 +1433,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2798 (The graphite2::GlyphCache::Loader::Loader function in Graphite 2 ...)
@@ -1437,6 +1441,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2797 (The graphite2::TtfUtil::CmapSubtable12Lookup function in Graphite 2 ...)
@@ -1444,6 +1449,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2796 (Heap-based buffer overflow in the graphite2::vm::Machine::Code::Code ...)
@@ -1451,6 +1457,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2795 (The graphite2::FileFace::get_table_fn function in Graphite 2 before ...)
@@ -1458,6 +1465,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2794 (The graphite2::TtfUtil::CmapSubtable12NextCodepoint function in ...)
@@ -1465,6 +1473,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2793 (CachedCmap.cpp in Graphite 2 before 1.3.6, as used in Mozilla Firefox ...)
@@ -1472,6 +1481,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2792 (The graphite2::Slot::getAttr function in Slot.cpp in Graphite 2 before ...)
@@ -1479,6 +1489,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2791 (The graphite2::GlyphCache::glyph function in Graphite 2 before 1.3.6, ...)
@@ -1486,6 +1497,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2790 (The graphite2::TtfUtil::GetTableInfo function in Graphite 2 before ...)
@@ -1493,6 +1505,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-2789
@@ -4240,6 +4253,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-37/
- graphite2 1.3.6-1
CVE-2016-1976 (Use-after-free vulnerability in the DesktopDisplayDevice class in the ...)
@@ -4251,6 +4265,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-34/
CVE-2016-1973 (Race condition in the GetStaticInstance function in the WebRTC ...)
- iceweasel <unfixed>
@@ -4288,6 +4303,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-31/
CVE-2016-1965 (Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7 mishandle ...)
{DSA-3510-1}
@@ -4300,6 +4316,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-27/
CVE-2016-1963 (The FileReader class in Mozilla Firefox before 45.0 allows local users ...)
- iceweasel <unfixed>
@@ -4313,18 +4330,21 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-25/
CVE-2016-1961 (Use-after-free vulnerability in the nsHTMLDocument::SetBody function ...)
{DSA-3510-1}
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-24/
CVE-2016-1960 (Integer underflow in the nsHtml5TreeBuilder class in the HTML5 string ...)
{DSA-3510-1}
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-23/
CVE-2016-1959 (The ServiceWorkerManager class in Mozilla Firefox before 45.0 allows ...)
- firefox-esr 45.0esr-1
@@ -4344,6 +4364,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-20/
CVE-2016-1956 (Mozilla Firefox before 45.0 on Linux, when an Intel video driver is ...)
- iceweasel <unfixed>
@@ -4364,6 +4385,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-17/
CVE-2016-1953 (Multiple unspecified vulnerabilities in the browser engine in Mozilla ...)
- iceweasel <unfixed>
@@ -4385,6 +4407,7 @@
- iceweasel <unfixed>
- firefox-esr 45.0esr-1
- firefox 45.0-1
+ - icedove 38.7.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2016-35/
- nss 2:3.23-1
NOTE: NSS fixed in 3.21.1
Modified: data/dsa-needed.txt
===================================================================
--- data/dsa-needed.txt 2016-03-17 17:59:03 UTC (rev 40443)
+++ data/dsa-needed.txt 2016-03-17 18:32:19 UTC (rev 40444)
@@ -28,6 +28,8 @@
NOTE: .debdiff sent to the Security Team, waiting for feedback
NOTE: asked about jessie status (seb)
--
+icedove (jmm)
+--
icedtea-web
--
imagemagick/oldstable
More information about the Secure-testing-commits
mailing list