[Git][security-tracker-team/security-tracker][master] gogoprotobuf fixed in sid

Moritz Muehlenhoff jmm at debian.org
Wed Jan 27 18:33:32 GMT 2021 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f83319d2 by Moritz Muehlenhoff at 2021-01-27T19:33:00+01:00
gogoprotobuf fixed in sid
new thunderbird issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -5184,8 +5184,10 @@ CVE-2021-23964
 	RESERVED
 	- firefox-esr 78.7.0esr-1
 	- firefox 85.0-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-04/#CVE-2021-23964
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-03/#CVE-2021-23964
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-05/#CVE-2021-23964
 CVE-2021-23963
 	RESERVED
 	- firefox 85.0-1
@@ -5202,8 +5204,10 @@ CVE-2021-23960
 	RESERVED
 	- firefox-esr 78.7.0esr-1
 	- firefox 85.0-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-04/#CVE-2021-23960
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-03/#CVE-2021-23960
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-05/#CVE-2021-23960
 CVE-2021-23959
 	RESERVED
 	- firefox <not-affected> (Only affects Firefox for Android)
@@ -5228,14 +5232,18 @@ CVE-2021-23954
 	RESERVED
 	- firefox-esr 78.7.0esr-1
 	- firefox 85.0-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-04/#CVE-2021-23954
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-03/#CVE-2021-23954
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-05/#CVE-2021-23954
 CVE-2021-23953
 	RESERVED
 	- firefox-esr 78.7.0esr-1
 	- firefox 85.0-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-04/#CVE-2021-23953
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-03/#CVE-2021-23953
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-05/#CVE-2021-23953
 CVE-2021-23952
 	RESERVED
 CVE-2021-23951
@@ -5516,7 +5524,7 @@ CVE-2021-3123
 CVE-2021-3122
 	RESERVED
 CVE-2021-3121 (An issue was discovered in GoGo Protobuf before 1.3.2. plugin/unmarsha ...)
-	- golang-gogoprotobuf <unfixed>
+	- golang-gogoprotobuf 1.3.2-1
 	NOTE: https://github.com/gogo/protobuf/commit/b03c65ea87cdc3521ede29f62fe3ce239267c1bc
 CVE-2021-3120
 	RESERVED
@@ -27207,8 +27215,10 @@ CVE-2020-26977 (By attempting to connect a website using an unresponsive port, a
 CVE-2020-26976 (When a HTTPS pages was embedded in a HTTP page, and there was a servic ...)
 	- firefox 84.0-1
 	- firefox-esr 78.7.0esr-1
+	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-04/#CVE-2020-26976
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-54/#CVE-2020-26976
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-05/#CVE-2020-26976
 CVE-2020-26975 (When a malicious application installed on the user's device broadcast  ...)
 	- firefox <not-affected> (Android specific)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-54/#CVE-2020-26975
@@ -51448,6 +51458,8 @@ CVE-2020-15686
 	RESERVED
 CVE-2020-15685
 	RESERVED
+	- thunderbird <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-05/#CVE-2020-15685
 CVE-2020-15684 (Mozilla developers reported memory safety bugs present in Firefox 81.  ...)
 	- firefox 82.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-45/#CVE-2020-15684



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f83319d21df562aad30b5d9d3246aabfe725ee67

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f83319d21df562aad30b5d9d3246aabfe725ee67
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210127/88dba17c/attachment-0001.html>

More information about the debian-security-tracker-commits mailing list