[Secure-testing-commits] r58268 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Tue Dec 5 15:41:50 UTC 2017
Author: jmm
Date: 2017-12-05 15:41:50 +0000 (Tue, 05 Dec 2017)
New Revision: 58268
Modified:
data/CVE/list
Log:
no need to track android bugs for firefox, those only affect Firefox builds for Android
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-05 15:37:29 UTC (rev 58267)
+++ data/CVE/list 2017-12-05 15:41:50 UTC (rev 58268)
@@ -50773,11 +50773,6 @@
NOT-FOR-US: Fluoride Bluetooth stack in Android
CVE-2017-0841 (A remote code execution vulnerability in the Android system ...)
- android-platform-system-core <unfixed> (unimportant)
- - firefox <unfixed>
- - firefox-esr <unfixed>
- - icedove <unfixed>
- - thunderbird <unfixed>
- TODO: Vulnerable code exists in firefox/firefox-esr and thunderbird/icedove but not sure if affected
NOTE: Fixed by https://android.googlesource.com/platform/system/core/+/47efc676c849e3abf32001d66e2d6eb887e83c48%5E!/
CVE-2017-0840 (An information disclosure vulnerability in the Android media framework ...)
NOT-FOR-US: Android media framework
More information about the Secure-testing-commits
mailing list