[Git][security-tracker-team/security-tracker][master] Add assigned CVEs for thunderbird issues

Salvatore Bonaccorso carnil at debian.org
Tue Jan 22 21:20:52 GMT 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
1b44364b by Salvatore Bonaccorso at 2019-01-22T21:20:06Z
Add assigned CVEs for thunderbird issues

- - - - -


3 changed files:

- data/CVE/list
- data/DLA/list
- data/DSA/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -19273,8 +19273,10 @@ CVE-2018-18498
 	{DSA-4354-1 DLA-1605-1}
 	- firefox 64.0-1
 	- firefox-esr 60.4.0esr-1
+	- thunderbird 1:60.4.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-18498
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18498
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-18498
 CVE-2018-18497
 	RESERVED
 	- firefox 64.0-1
@@ -19292,22 +19294,28 @@ CVE-2018-18494
 	{DSA-4354-1 DLA-1605-1}
 	- firefox 64.0-1
 	- firefox-esr 60.4.0esr-1
+	- thunderbird 1:60.4.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-18494
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18494
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-18494
 CVE-2018-18493
 	RESERVED
 	{DSA-4354-1 DLA-1605-1}
 	- firefox 64.0-1
 	- firefox-esr 60.4.0esr-1
+	- thunderbird 1:60.4.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-18493
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18493
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-18493
 CVE-2018-18492
 	RESERVED
 	{DSA-4354-1 DLA-1605-1}
 	- firefox 64.0-1
 	- firefox-esr 60.4.0esr-1
+	- thunderbird 1:60.4.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-18492
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18492
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-18492
 CVE-2018-18491
 	RESERVED
 CVE-2018-18490
@@ -21967,8 +21975,10 @@ CVE-2018-17466 (Incorrect texture handling in Angle in Google Chrome prior to ..
 	[jessie] - chromium-browser <end-of-life> (End of life, see DSA 4020)
 	- firefox 64.0-1
 	- firefox-esr 60.4.0esr-1
+	- thunderbird 1:60.4.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-17466
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-17466
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-17466
 CVE-2018-17465 (Incorrect implementation of object trimming in V8 in Google Chrome ...)
 	{DSA-4330-1}
 	- chromium-browser 70.0.3538.67-1
@@ -34960,8 +34970,10 @@ CVE-2018-12405
 	{DSA-4354-1 DLA-1605-1}
 	- firefox 64.0-1
 	- firefox-esr 60.4.0esr-1
+	- thunderbird 1:60.4.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-12405
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-12405
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-12405
 CVE-2018-12404 [Cache side-channel variant of the Bleichenbacher attack]
 	RESERVED
 	- nss 2:3.41-1


=====================================
data/DLA/list
=====================================
@@ -36,6 +36,7 @@
 [02 Jan 2019] DLA-1625-1 tzdata - new upstream version
 	[jessie] - tzdata 2018i-0+deb8u1
 [02 Jan 2019] DLA-1624-1 thunderbird - security update
+	{CVE-2018-18498 CVE-2018-18494 CVE-2018-18493 CVE-2018-18492 CVE-2018-17466 CVE-2018-12405}
 	[jessie] - thunderbird 1:60.4.0-1~deb8u1
 [31 Dec 2018] DLA-1623-1 tar - security update
 	{CVE-2018-20482}


=====================================
data/DSA/list
=====================================
@@ -28,6 +28,7 @@
 	{CVE-2019-3498}
 	[stretch] - python-django 1:1.10.7-2+deb9u4
 [01 Jan 2019] DSA-4362-1 thunderbird - security update
+	{CVE-2018-18498 CVE-2018-18494 CVE-2018-18493 CVE-2018-18492 CVE-2018-17466 CVE-2018-12405}
 	[stretch] - thunderbird 1:60.4.0-1~deb9u1
 [28 Dec 2018] DSA-4361-1 libextractor - security update
 	{CVE-2018-20430 CVE-2018-20431}



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1b44364b100aeb01cf4b1ddb3a044036064392f7

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1b44364b100aeb01cf4b1ddb3a044036064392f7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190122/9d0deeb4/attachment.html>


More information about the debian-security-tracker-commits mailing list