[Git][security-tracker-team/security-tracker][master] new firefox issues

Moritz Muehlenhoff jmm at debian.org
Tue Oct 23 21:33:54 BST 2018 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2011df70 by Moritz Muehlenhoff at 2018-10-23T20:33:22Z
new firefox issues

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -15415,36 +15415,80 @@ CVE-2018-12404
 	RESERVED
 CVE-2018-12403
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12403
 CVE-2018-12402
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12402
 CVE-2018-12401
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12401
 CVE-2018-12400
 	RESERVED
+	- firefox <not-affected> (Android-specific)
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12400
 CVE-2018-12399
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12399
 CVE-2018-12398
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12398
 CVE-2018-12397
 	RESERVED
+	- firefox-esr <unfixed>
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/#CVE-2018-12397
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12397
 CVE-2018-12396
 	RESERVED
+	- firefox-esr <unfixed>
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/#CVE-2018-12396
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12396
 CVE-2018-12395
 	RESERVED
+	- firefox-esr <unfixed>
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/#CVE-2018-12395
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12395
 CVE-2018-12394
 	RESERVED
 CVE-2018-12393
 	RESERVED
+	- firefox-esr <unfixed>
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/#CVE-2018-12393
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12393
 CVE-2018-12392
 	RESERVED
+	- firefox-esr <unfixed>
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/#CVE-2018-12392
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12392
 CVE-2018-12391
 	RESERVED
+	- firefox-esr <not-affected> (Android-specific)
+	- firefox <not-affected> (Android-specific)
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/#CVE-2018-12391
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12391
 CVE-2018-12390
 	RESERVED
+	- firefox-esr <unfixed>
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/#CVE-2018-12390
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12390
 CVE-2018-12389
 	RESERVED
+	- firefox-esr <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-27/#CVE-2018-12389
 CVE-2018-12388
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-26/#CVE-2018-12388
 CVE-2018-12387 (A vulnerability where the JavaScript JIT compiler inlines ...)
 	{DSA-4310-1}
 	- firefox 62.0.3-1


=====================================
data/dsa-needed.txt
=====================================
@@ -19,6 +19,8 @@ ceph
 --
 chromium-browser
 --
+firefox-esr
+--
 ghostscript (carnil)
   Regression update: #909076, possibly #909929 (but see upstream issue),
   and #909957



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2011df70c7258f3ea6466fa5427e52741315cae4

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/2011df70c7258f3ea6466fa5427e52741315cae4
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181023/1347d248/attachment.html>

More information about the debian-security-tracker-commits mailing list