[Git][security-tracker-team/security-tracker][master] 2 commits: Record as well fixed version for two unimportant CVEs for firefox-esr

Salvatore Bonaccorso carnil at debian.org
Fri Sep 7 22:28:49 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
98d9958a by Salvatore Bonaccorso at 2018-09-07T21:28:25Z
Record as well fixed version for two unimportant CVEs for firefox-esr

- - - - -
c37709e5 by Salvatore Bonaccorso at 2018-09-07T21:28:25Z
Add kamailio to dsa-needed list

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -10665,6 +10665,7 @@ CVE-2018-12379
 	RESERVED
 	- firefox 62.0-1 (unimportant)
 	- firefox-esr 60.2.0esr-1 (unimportant)
+	[stretch] - firefox-esr 60.2.0esr-1~deb9u2
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2018-12379
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-21/#CVE-2018-12379
 CVE-2018-12378
@@ -47603,6 +47604,7 @@ CVE-2017-16542 (Zoho ManageEngine Applications Manager 13 before build 13500 all
 CVE-2017-16541 (Tor Browser before 7.0.9 on macOS and Linux allows remote attackers to ...)
 	- firefox 62.0-1 (unimportant)
 	- firefox-esr 60.2.0esr-1 (unimportant)
+	[stretch] - firefox-esr 60.2.0esr-1~deb9u2
 	NOTE: https://trac.torproject.org/projects/tor/ticket/24052
 	NOTE: https://blog.torproject.org/tor-browser-709-released
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-20/#CVE-2017-16541


=====================================
data/dsa-needed.txt
=====================================
@@ -34,6 +34,8 @@ gnutls28
 --
 graphicsmagick
 --
+kamailio (carnil)
+--
 knot-resolver
 --
 libarchive-zip-perl (carnil)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/27ef00a89fc4eff1486a32c10b4b71236f86857f...c37709e5252f45dc46e30e29fc62fade97ac67fb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/27ef00a89fc4eff1486a32c10b4b71236f86857f...c37709e5252f45dc46e30e29fc62fade97ac67fb
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180907/c837dee8/attachment.html>


More information about the debian-security-tracker-commits mailing list