[Git][security-tracker-team/security-tracker][master] Track experimental uploaded fixes for thunderbird (mfsa2021-47)

Sat Oct 16 20:13:17 BST 2021


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3a89fec3 by Salvatore Bonaccorso at 2021-10-16T21:12:15+02:00
Track experimental uploaded fixes for thunderbird (mfsa2021-47)

But only those which have an intersect with unstable beeing unfixed.
Some of the CVEs are known to be only affecting versions not released in
unstable.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -10605,6 +10605,7 @@ CVE-2021-38503
 	RESERVED
 CVE-2021-38502
 	RESERVED
+	[experimental] - thunderbird 1:91.2.0-1
 	- thunderbird <undetermined>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38502
 	TODO: double check, it was only referenced in mfsa2021-47 but not mfsa2021-46, but issue is about attack on SMTP STARTTLS connections
@@ -10621,6 +10622,7 @@ CVE-2021-38500
 	{DSA-4981-1 DLA-2782-1}
 	- firefox 93.0-1
 	- firefox-esr 91.2.0esr-1
+	[experimental] - thunderbird 1:91.2.0-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38500
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-44/#CVE-2021-38500
@@ -10652,6 +10654,7 @@ CVE-2021-38496
 	{DSA-4981-1 DLA-2782-1}
 	- firefox 93.0-1
 	- firefox-esr 91.2.0esr-1
+	[experimental] - thunderbird 1:91.2.0-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38496
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-44/#CVE-2021-38496



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a89fec34ed7d47ebadf281cc804548e16efc3ba

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/3a89fec34ed7d47ebadf281cc804548e16efc3ba
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20211016/235a84d3/attachment-0001.htm>
