[Git][security-tracker-team/security-tracker][master] Track fixed version for firefox-esr via unstable for mfsa2024-22
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed May 15 05:23:52 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
fde9a919 by Salvatore Bonaccorso at 2024-05-15T06:22:54+02:00
Track fixed version for firefox-esr via unstable for mfsa2024-22
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -408,7 +408,7 @@ CVE-2024-4778 (Memory safety bugs present in Firefox 125. Some of these bugs sho
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4778
CVE-2024-4777 (Memory safety bugs present in Firefox 125, Firefox ESR 115.10, and Thu ...)
- firefox 126.0-1
- - firefox-esr <unfixed>
+ - firefox-esr 115.11.0esr-1
- thunderbird <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4777
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4777
@@ -433,28 +433,28 @@ CVE-2024-4771 (A memory allocation check was missing which would lead to a use-a
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4771
CVE-2024-4770 (When saving a page to PDF, certain font styles could have led to a pot ...)
- firefox 126.0-1
- - firefox-esr <unfixed>
+ - firefox-esr 115.11.0esr-1
- thunderbird <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4770
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4770
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-23/#CVE-2024-4769
CVE-2024-4769 (When importing resources using Web Workers, error messages would disti ...)
- firefox 126.0-1
- - firefox-esr <unfixed>
+ - firefox-esr 115.11.0esr-1
- thunderbird <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4769
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4769
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-23/#CVE-2024-4769
CVE-2024-4768 (A bug in popup notifications' interaction with WebAuthn made it easier ...)
- firefox 126.0-1
- - firefox-esr <unfixed>
+ - firefox-esr 115.11.0esr-1
- thunderbird <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4768
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4768
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-23/#CVE-2024-4768
CVE-2024-4767 (If the `browser.privatebrowsing.autostart` preference is enabled, Inde ...)
- firefox 126.0-1
- - firefox-esr <unfixed>
+ - firefox-esr 115.11.0esr-1
- thunderbird <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4767
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4767
@@ -467,7 +467,7 @@ CVE-2024-4765 (Web application manifests were stored by using an insecure MD5 ha
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4765
CVE-2024-4367 (A type check was missing when handling fonts in PDF.js, which would al ...)
- firefox 126.0-1
- - firefox-esr <unfixed>
+ - firefox-esr 115.11.0esr-1
- thunderbird <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4367
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4367
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fde9a919943fd2fc0a10ae8df962ea410ff02db3
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fde9a919943fd2fc0a10ae8df962ea410ff02db3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240515/cbe69b7f/attachment.htm>
More information about the debian-security-tracker-commits
mailing list