[Git][security-tracker-team/security-tracker][master] Reserve DLA-3021-1 for firefox-esr

Tue May 24 09:06:13 BST 2022


Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker


Commits:
abb39de7 by Emilio Pozuelo Monfort at 2022-05-24T10:05:57+02:00
Reserve DLA-3021-1 for firefox-esr

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[24 May 2022] DLA-3021-1 firefox-esr - security update
+	{CVE-2022-1529 CVE-2022-1802}
+	[stretch] - firefox-esr 91.9.1esr-1~deb9u1
 [23 May 2022] DLA-3020-1 thunderbird - security update
 	{CVE-2022-1520 CVE-2022-29909 CVE-2022-29911 CVE-2022-29912 CVE-2022-29913 CVE-2022-29914 CVE-2022-29916 CVE-2022-29917}
 	[stretch] - thunderbird 1:91.9.0-1~deb9u1


=====================================
data/dla-needed.txt
=====================================
@@ -64,9 +64,6 @@ exempi
 filezilla (Andreas Rönnquist)
   NOTE: 20220523: Harmonize with Debian 10.4 (1 CVE) (Beuc/front-desk)
 --
-firefox-esr (Emilio)
-  NOTE: 20220522: From the description this looks criticial. Did not check whether the code is vulnerable or not. Leaving that to someone else.
---
 firmware-nonfree
   NOTE: 20210731: WIP: https://salsa.debian.org/lts-team/packages/firmware-nonfree
   NOTE: 20210828: Most CVEs are difficult to backport. Contacted Ben regarding possible "ignore" tag



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abb39de76cf7449ca9cfc42723bdcd2592cbce2d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/abb39de76cf7449ca9cfc42723bdcd2592cbce2d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220524/418114b8/attachment.htm>
