[Git][security-tracker-team/security-tracker][master] New firefox issues
Moritz Muehlenhoff
jmm at debian.org
Wed Jun 27 09:33:56 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7c23bc56 by Moritz Muehlenhoff at 2018-06-27T10:33:31+02:00
New firefox issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1427,32 +1427,76 @@ CVE-2018-12372
RESERVED
CVE-2018-12371
RESERVED
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12371
CVE-2018-12370
RESERVED
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12370
CVE-2018-12369
RESERVED
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12369
CVE-2018-12368
RESERVED
+ - firefox-esr <not-affected> (Windows-specific)
+ - firefox <not-affected> (Windows-specific)
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12368
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-12368
CVE-2018-12367
RESERVED
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12367
CVE-2018-12366
RESERVED
+ - firefox-esr 52.9.0esr-1
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12366
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-12366
CVE-2018-12365
RESERVED
+ - firefox-esr 52.9.0esr-1
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12365
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-12365
CVE-2018-12364
RESERVED
+ - firefox-esr 52.9.0esr-1
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12364
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-12364
CVE-2018-12363
RESERVED
+ - firefox-esr 52.9.0esr-1
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12363
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-12363
CVE-2018-12362
RESERVED
+ - firefox-esr 52.9.0esr-1
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12362
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-12362
CVE-2018-12361
RESERVED
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12361
CVE-2018-12360
RESERVED
+ - firefox-esr 52.9.0esr-1
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12360
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-12360
CVE-2018-12359
RESERVED
+ - firefox-esr 52.9.0esr-1
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12359
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-12359
CVE-2018-12358
RESERVED
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12359
CVE-2018-12423 (In Synapse before 0.31.2, unauthorised users can hijack rooms when ...)
- matrix-synapse 0.31.2+dfsg-1 (bug #901549)
NOTE: https://github.com/matrix-org/synapse/pull/3397
@@ -20966,10 +21010,18 @@ CVE-2018-5189 (Race condition in Jungo Windriver 12.5.1 allows local users to ca
NOT-FOR-US: Jungo Windriver
CVE-2018-5188
RESERVED
+ - firefox-esr 52.9.0esr-1
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-5188
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-5188
CVE-2018-5187
RESERVED
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-5187
CVE-2018-5186
RESERVED
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-5186
CVE-2018-5185 (Plaintext of decrypted emails can leak through by user submitting an ...)
{DSA-4209-1 DLA-1382-1}
- thunderbird 1:52.8.0-1
@@ -21088,6 +21140,10 @@ CVE-2018-5157 (Same-origin protections for the PDF viewer can be bypassed, allow
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-12/#CVE-2018-5157
CVE-2018-5156
RESERVED
+ - firefox-esr 52.9.0esr-1
+ - firefox 61.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-15/#CVE-2018-12359
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-17/#CVE-2018-5165
CVE-2018-5155 (A use-after-free vulnerability can occur while adjusting layout during ...)
{DSA-4209-1 DSA-4199-1 DLA-1382-1 DLA-1376-1}
- firefox 60.0-1
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7c23bc56719c14d05dbf1f4a566bb89b9abec6e5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7c23bc56719c14d05dbf1f4a566bb89b9abec6e5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180627/1bb56344/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list