[Git][security-tracker-team/security-tracker][master] Add fixed version for firefox and firefox-esr in unstable (mfsa2019-2{1,2})
Salvatore Bonaccorso
carnil at debian.org
Wed Jul 10 09:22:20 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
c59f95ad by Salvatore Bonaccorso at 2019-07-10T08:21:42Z
Add fixed version for firefox and firefox-esr in unstable (mfsa2019-2{1,2})
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -4294,111 +4294,120 @@ CVE-2019-11731
RESERVED
CVE-2019-11730
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1
+ - firefox-esr 60.8.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11730
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-11730
CVE-2019-11729
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1 (unimportant)
+ - firefox-esr 60.8.0esr-1 (unimportant)
- nss 2:3.45-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11729
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-11729
NOTE: https://hg.mozilla.org/projects/nss/rev/dabfe1160c682b4d1d19c5a7a13ab3828bb9d37f
NOTE: https://hg.mozilla.org/projects/nss/rev/ebc93d6daeaa9001d31fd18b5199779da99ae9aa
+ NOTE: firefox-esr in older suites than buster use the embedded copy and thus issue
+ NOTE: is just fixed by updating firefox-esr to 00.8.0. For the others an update to
+ NOTE: src:nss is needed as firefox-esr uses the system library.
CVE-2019-11728
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11728
CVE-2019-11727
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1 (unimportant)
- nss 2:3.45-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11727
NOTE: https://hg.mozilla.org/projects/nss/rev/0a4e8b72a92e144663c2f35d3836f7828cfc97f2
+ NOTE: firefox-esr in older suites than buster use the embedded copy and thus issue
+ NOTE: is just fixed by updating firefox-esr to 00.8.0. For the others an update to
+ NOTE: src:nss is needed as firefox-esr uses the system library.
CVE-2019-11726
RESERVED
CVE-2019-11725
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11725
CVE-2019-11724
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11724
CVE-2019-11723
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11723
CVE-2019-11722
RESERVED
CVE-2019-11721
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11721
CVE-2019-11720
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11720
CVE-2019-11719
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1 (unimportant)
+ - firefox-esr 60.8.0esr-1 (unimportant)
- nss 2:3.45-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11719
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-11719
NOTE: https://hg.mozilla.org/projects/nss/rev/6cfb54d262d030783137aa6478b45ecb3cbfc624
+ NOTE: firefox-esr in older suites than buster use the embedded copy and thus issue
+ NOTE: is just fixed by updating firefox-esr to 00.8.0. For the others an update to
+ NOTE: src:nss is needed as firefox-esr uses the system library.
CVE-2019-11718
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11718
CVE-2019-11717
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1
+ - firefox-esr 60.8.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11717
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-11717
CVE-2019-11716
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11716
CVE-2019-11715
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1
+ - firefox-esr 60.8.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11715
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-11715
CVE-2019-11714
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11714
CVE-2019-11713
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1
+ - firefox-esr 60.8.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11713
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-11713
CVE-2019-11712
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1
+ - firefox-esr 60.8.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11712
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-11712
CVE-2019-11711
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1
+ - firefox-esr 60.8.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11711
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-11711
CVE-2019-11710
RESERVED
- - firefox <unfixed>
+ - firefox 68.0-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11710
CVE-2019-11709
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1
+ - firefox-esr 60.8.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11709
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-11709
CVE-2019-11708 [sandbox escape using Prompt:Open]
@@ -10112,8 +10121,8 @@ CVE-2019-9812
RESERVED
CVE-2019-9811
RESERVED
- - firefox <unfixed>
- - firefox-esr <unfixed>
+ - firefox 68.0-1
+ - firefox-esr 60.8.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-9811
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-22/#CVE-2019-9811
CVE-2019-9810 (Incorrect alias information in IonMonkey JIT compiler for Array.protot ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c59f95ad957e3ebb41250f6a6d3e70bb65f0f7ae
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/c59f95ad957e3ebb41250f6a6d3e70bb65f0f7ae
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190710/858dfac4/attachment.html>
More information about the debian-security-tracker-commits
mailing list