[Git][security-tracker-team/security-tracker][master] also associate two older firefox issues with NSS

Moritz Muehlenhoff (@jmm) jmm at debian.org
Thu Aug 8 09:22:44 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
e18a3123 by Moritz Muehlenhoff at 2024-08-08T10:21:49+02:00
also associate two older firefox issues with NSS

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7721,8 +7721,8 @@ CVE-2024-6610 (Form validation popups could capture escape key presses. Therefor
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-29/#CVE-2024-6610
 CVE-2024-6609 (When almost out-of-memory an elliptic curve key which was never alloca ...)
 	- firefox 128.0-1
+	- nss 2:3.101-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-29/#CVE-2024-6609
-	TODO: check how its related to src:nss and if src:nss tracking is necessary
 CVE-2024-6608 (It was possible to move the cursor using pointerlock from an iframe. T ...)
 	- firefox 128.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-29/#CVE-2024-6608
@@ -7756,10 +7756,10 @@ CVE-2024-6602 (A mismatch between allocator and deallocator could have lead to m
 	- firefox 128.0-1
 	- firefox-esr 115.13.0esr-1
 	- thunderbird 1:115.13.0-1
+	- nss 2:3.101-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-29/#CVE-2024-6602
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-30/#CVE-2024-6602
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-31/#CVE-2024-6602
-	TODO: check how its related to src:nss and if src:nss tracking is necessary
 CVE-2024-6601 (A race condition could lead to a cross-origin container obtaining perm ...)
 	{DSA-5733-1 DSA-5727-1}
 	- firefox 128.0-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e18a3123e52f6a3d7d1091121dad70b6927deced

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e18a3123e52f6a3d7d1091121dad70b6927deced
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240808/17b2a142/attachment.htm>

More information about the debian-security-tracker-commits mailing list