[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] new thunderbird issues

Mon Mar 26 11:57:31 UTC 2018

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
35ec56a7 by Moritz Muehlenhoff at 2018-03-26T13:57:09+02:00
new thunderbird issues

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -10525,19 +10525,25 @@ CVE-2018-5146 [out-of-bound write]
 	{DSA-4143-1 DSA-4140-1}
 	- firefox 59.0.1-1
 	- firefox-esr 52.7.2esr-1
+	- thunderbird <unfixed>
 	- libvorbis 1.3.5-4.2 (bug #893130)
 	NOTE: https://git.xiph.org/?p=vorbis.git;a=commit;h=667ceb4aab60c1f74060143bb24e5f427b3cce5f
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-08/
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-09/
 CVE-2018-5145
 	RESERVED
 	{DSA-4139-1 DLA-1308-1}
 	- firefox-esr 52.7.0esr-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-07/
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-09/
 CVE-2018-5144
 	RESERVED
 	{DSA-4139-1 DLA-1308-1}
 	- firefox-esr 52.7.0esr-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-07/
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-09/
 CVE-2018-5143
 	RESERVED
 	- firefox 59.0-1
@@ -10603,8 +10609,10 @@ CVE-2018-5129
 	{DSA-4139-1 DLA-1308-1}
 	- firefox 59.0-1
 	- firefox-esr 52.7.0esr-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-07/
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-06/
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-09/
 CVE-2018-5128
 	RESERVED
 	- firefox 59.0-1
@@ -10614,8 +10622,10 @@ CVE-2018-5127
 	{DSA-4139-1 DLA-1308-1}
 	- firefox 59.0-1
 	- firefox-esr 52.7.0esr-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-07/
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-06/
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-09/
 CVE-2018-5126
 	RESERVED
 	- firefox 59.0-1
@@ -10625,8 +10635,10 @@ CVE-2018-5125
 	{DSA-4139-1 DLA-1308-1}
 	- firefox 59.0-1
 	- firefox-esr 52.7.0esr-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-07/
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-06/
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-09/
 CVE-2018-5124
 	RESERVED
 	- firefox 58.0.1-1


=====================================
data/dsa-needed.txt
=====================================
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -89,6 +89,8 @@ sqlite3/oldstable
 --
 sssd/stable
 --
+thunderbird (jmm)
+--
 tomcat7/oldstable
 --
 tomcat8



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/35ec56a71c3c95f07b50917274e9676cd6c82b20

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/35ec56a71c3c95f07b50917274e9676cd6c82b20
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180326/6ee4a79d/attachment-0001.html>
