[Git][security-tracker-team/security-tracker][master] Added firefox-esr to dla-needed. It looks serious enough to not halt any...

[Ola Lundqvist (@opal)]

Ola Lundqvist pushed to branch master at Debian Security Tracker / security-tracker


Commits:
5f3a2325 by Ola Lundqvist at 2022-05-22T23:27:37+02:00
Added firefox-esr to dla-needed. It looks serious enough to not halt any update. Did not check the source code so that must be done by someone.

- - - - -


1 changed file:

- data/dla-needed.txt


Changes:

=====================================
data/dla-needed.txt
=====================================
@@ -48,6 +48,9 @@ exempi
   NOTE: 20220517: A lot of packages reverse depends on libexmpi8. Further analysis
   NOTE: 20220517: is needed.
 --
+firefox-esr
+  NOTE: 20220522: From the description this looks criticial. Did not check whether the code is vulnerable or not. Leaving that to someone else.
+--
 firmware-nonfree
   NOTE: 20210731: WIP: https://salsa.debian.org/lts-team/packages/firmware-nonfree
   NOTE: 20210828: Most CVEs are difficult to backport. Contacted Ben regarding possible "ignore" tag



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f3a232539788aa69a20e771de08c417173f2d0e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/5f3a232539788aa69a20e771de08c417173f2d0e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220522/d3dce8bd/attachment-0001.htm>