[Git][security-tracker-team/security-tracker][master] Add firefox issues via unstable

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a84b4b8c by Salvatore Bonaccorso at 2024-06-12T07:33:36+02:00
Add firefox issues via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -306,35 +306,35 @@ CVE-2024-5702 (Memory corruption in the networking stack could have led to a pot
 	- firefox-esr 115.12.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5702
 CVE-2024-5701 (Memory safety bugs present in Firefox 126. Some of these bugs showed e ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5701
 CVE-2024-5700 (Memory safety bugs present in Firefox 126, Firefox ESR 115.11, and Thu ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5700
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5700
 CVE-2024-5699 (In violation of spec, cookie prefixes such as `__Secure` were being ig ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5699
 CVE-2024-5698 (By manipulating the fullscreen feature while opening a data-list, an a ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5698
 CVE-2024-5697 (A website was able to detect when a user took a screenshot of a page u ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5697
 CVE-2024-5696 (By manipulating the text in an `<input>` tag, an attacker could  ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5696
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5696
 CVE-2024-5695 (If an out-of-memory condition occurs at a specific point using allocat ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5695
 CVE-2024-5694 (An attacker could have caused a use-after-free in the JavaScript engin ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5694
 CVE-2024-5693 (Offscreen Canvas did not properly track cross-origin tainting, which c ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5693
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5693
@@ -344,20 +344,20 @@ CVE-2024-5692 (On Windows, when using the 'Save As' functionality, an attacker c
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5692
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5692
 CVE-2024-5691 (By tricking the browser with a `X-Frame-Options` header, a sandboxed i ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5691
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5691
 CVE-2024-5690 (By monitoring the time certain operations take, an attacker could have ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5690
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5690
 CVE-2024-5689 (In addition to detecting when a user was taking a screenshot (XXX), a  ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5689
 CVE-2024-5688 (If a garbage collection was triggered at the right time, a use-after-f ...)
-	- firefox <unfixed>
+	- firefox 127.0-1
 	- firefox-esr 115.12.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-25/#CVE-2024-5688
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-26/#CVE-2024-5688



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a84b4b8c350b4572db98bec127616eacef0b54e7

-- 
This project does not include diff previews in email notifications.
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a84b4b8c350b4572db98bec127616eacef0b54e7
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240612/24052dec/attachment-0001.htm>