[Git][security-tracker-team/security-tracker][master] firefox, thunderbird DSAs

Thu Mar 21 19:08:27 GMT 2024


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9ab1c32b by Moritz Mühlenhoff at 2024-03-21T20:07:16+01:00
firefox, thunderbird DSAs

- - - - -


3 changed files:

- data/CVE/list
- data/DSA/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -4048,8 +4048,6 @@ CVE-2024-20829 (Missing proper interaction for opening deeplink in Samsung Inter
 	NOT-FOR-US: Samsung
 CVE-2024-1936 (The encrypted subject of an email message could be incorrectly and per ...)
 	- thunderbird 1:115.8.1-1
-	[bookworm] - thunderbird <postponed> (Fix alongside in next DSA)
-	[bullseye] - thunderbird <postponed> (Fix alongside in next DSA)
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-11/#CVE-2024-1936
 CVE-2024-1782 (The Blue Triad EZAnalytics plugin for WordPress is vulnerable to Refle ...)
 	NOT-FOR-US: WordPress plugin


=====================================
data/DSA/list
=====================================
@@ -1,3 +1,11 @@
+[21 Mar 2024] DSA-5644-1 thunderbird - security update
+	{CVE-2023-5388 CVE-2024-0743 CVE-2024-1936 CVE-2024-2607 CVE-2024-2608 CVE-2024-2610 CVE-2024-2611 CVE-2024-2612 CVE-2024-2614 CVE-2024-2616}
+	[bullseye] - thunderbird 1:115.9.0-1~deb11u1
+	[bookworm] - thunderbird 1:115.9.0-1~deb12u1
+[21 Mar 2024] DSA-5643-1 firefox-esr - security update
+	{CVE-2023-5388 CVE-2024-0743 CVE-2024-2607 CVE-2024-2608 CVE-2024-2610 CVE-2024-2611 CVE-2024-2612 CVE-2024-2614 CVE-2024-2616}
+	[bullseye] - firefox-esr 115.9.0esr-1~deb11u1
+	[bookworm] - firefox-esr 115.9.0esr-1~deb12u1
 [20 Mar 2024] DSA-5626-2 pdns-recursor - regression update
 	[bookworm] - pdns-recursor 4.8.7-1
 [20 Mar 2024] DSA-5642-1 php-dompdf-svg-lib - security update


=====================================
data/dsa-needed.txt
=====================================
@@ -27,8 +27,6 @@ dnsmasq
 --
 expat (carnil)
 --
-firefox-esr (jmm)
---
 frr
 --
 gpac/oldstable
@@ -100,8 +98,6 @@ samba/oldstable
 --
 squid
 --
-thunderbird (jmm)
---
 varnish
 --
 wpa



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ab1c32b5901e713e9db6c9309448190d9b8b71d

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9ab1c32b5901e713e9db6c9309448190d9b8b71d
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240321/13bcc4f8/attachment-0001.htm>
