[Git][security-tracker-team/security-tracker][master] new firefox issues

Wed Sep 5 17:05:08 BST 2018

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7efd65ad by Moritz Muehlenhoff at 2018-09-05T16:04:36Z
new firefox issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10129,22 +10129,38 @@ CVE-2018-12384 [ServerHello.random is all zero when handling a v2-compatible Cli
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1622089
 CVE-2018-12383
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12383
 CVE-2018-12382
 	RESERVED
+	- firefox <not-affected> (Android-specific)
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12382
 CVE-2018-12381
 	RESERVED
+	- firefox <not-affected> (Windows-specific)
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12381
 CVE-2018-12380
 	RESERVED
 CVE-2018-12379
 	RESERVED
+	- firefox <unfixed> (unimportant)
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12379
 CVE-2018-12378
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12378
 CVE-2018-12377
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12377
 CVE-2018-12376
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12376
 CVE-2018-12375
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12375
 CVE-2018-12374
 	RESERVED
 	{DSA-4244-1 DLA-1425-1}
@@ -46988,9 +47004,10 @@ CVE-2017-16543 (Zoho ManageEngine Applications Manager 13 before build 13500 all
 CVE-2017-16542 (Zoho ManageEngine Applications Manager 13 before build 13500 allows ...)
 	NOT-FOR-US: Zoho
 CVE-2017-16541 (Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to ...)
-	- firefox-esr <not-affected> (Specific to Tor Browser)
+	- firefox <unfixed>
 	NOTE: https://trac.torproject.org/projects/tor/ticket/24052
 	NOTE: https://blog.torproject.org/tor-browser-709-released
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2017-16541
 CVE-2017-16540 (OpenEMR before 5.0.0 Patch 5 allows unauthenticated remote database ...)
 	NOT-FOR-US: OpenEMR
 CVE-2017-16539 (The DefaultLinuxSpec function in oci/defaults.go in Docker Moby through ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7efd65adfae6a062fdf9bc80a2ecd0ca351019c5

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7efd65adfae6a062fdf9bc80a2ecd0ca351019c5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180905/5a1d6509/attachment.html>
