[Git][security-tracker-team/security-tracker][master] Add new thunderbird issues from mfsa2020-04

Salvatore Bonaccorso carnil at debian.org
Sat Jan 11 20:04:20 GMT 2020 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f653c93f by Salvatore Bonaccorso at 2020-01-11T21:02:44+01:00
Add new thunderbird issues from mfsa2020-04

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -22069,7 +22069,9 @@ CVE-2019-17026
 	{DSA-4600-1 DLA-2061-1}
 	- firefox 72.0.1-1 (bug #948452)
 	- firefox-esr 68.4.1esr-1
+	- thunderbird 1:68.4.1-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-03/#CVE-2019-17026
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17026
 CVE-2019-17025 (Mozilla developers reported memory safety bugs present in Firefox 71.  ...)
 	- firefox 72.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17025
@@ -22077,8 +22079,10 @@ CVE-2019-17024 (Mozilla developers reported memory safety bugs present in Firefo
 	{DSA-4600-1 DLA-2061-1}
 	- firefox 72.0-1
 	- firefox-esr 68.4.0esr-1
+	- thunderbird 1:68.4.1-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17024
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17024
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17024
 CVE-2019-17023 (After a HelloRetryRequest has been sent, the client may negotiate a lo ...)
 	- firefox 72.0-1
 	- nss 2:3.49-1
@@ -22089,13 +22093,17 @@ CVE-2019-17022 (When pasting a <style> tag from the clipboard into
 	{DSA-4600-1 DLA-2061-1}
 	- firefox 72.0-1
 	- firefox-esr 68.4.0esr-1
+	- thunderbird 1:68.4.1-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17022
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17022
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17022
 CVE-2019-17021 (During the initialization of a new content process, a race condition o ...)
 	- firefox <not-affected> (Windows-specific)
 	- firefox-esr <not-affected> (Windows-specific)
+	- thunderbird <not-affected> (Windows-specific)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17021
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17021
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17021
 CVE-2019-17020 (If an XML file is served with a Content Security Policy and the XML fi ...)
 	- firefox 72.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17020
@@ -22109,19 +22117,25 @@ CVE-2019-17017 (Due to a missing case handling object types, a type confusion vu
 	{DSA-4600-1 DLA-2061-1}
 	- firefox 72.0-1
 	- firefox-esr 68.4.0esr-1
+	- thunderbird 1:68.4.1-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17017
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17017
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17017
 CVE-2019-17016 (When pasting a &lt;style&gt; tag from the clipboard into a ric ...)
 	{DSA-4600-1 DLA-2061-1}
 	- firefox 72.0-1
 	- firefox-esr 68.4.0esr-1
+	- thunderbird 1:68.4.1-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17016
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17016
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17016
 CVE-2019-17015 (During the initialization of a new content process, a pointer offset c ...)
 	- firefox <not-affected> (Windows-specific)
 	- firefox-esr <not-affected> (Windows-specific)
+	- thunderbird <not-affected> (Windows-specific)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17015
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17015
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17015
 CVE-2019-17014 (If an image had not loaded correctly (such as when it is not actually  ...)
 	- firefox 71.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2019-36/#CVE-2019-17014



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f653c93fbd38d9e6143437ec7864c4b328c348a6

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f653c93fbd38d9e6143437ec7864c4b328c348a6
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200111/0247db9b/attachment.html>

More information about the debian-security-tracker-commits mailing list