[Git][security-tracker-team/security-tracker][master] firefox fixed in sid

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Oct 30 10:09:42 GMT 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7adda586 by Moritz Muehlenhoff at 2024-10-30T11:09:14+01:00
firefox fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -421,73 +421,73 @@ CVE-2019-25219 (Asio C++ Library before 1.13.0 lacks a fallback error code in th
 CVE-2017-20195 (A vulnerability was found in LUNAD3v AreaLoad up to 1a1103182ed63a06dd ...)
 	NOT-FOR-US: LUNAD3v
 CVE-2024-10467 (Memory safety bugs present in Firefox 131, Firefox ESR 128.3, and Thun ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10467
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10467
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10467
 CVE-2024-10466 (By sending a specially crafted push message, a remote server could hav ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10466
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10466
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10466
 CVE-2024-10465 (A clipboard "paste" button could persist across tabs which allowed a s ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10465
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10465
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10465
 CVE-2024-10464 (Repeated writes to history interface attributes could have been used t ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10464
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10464
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10464
 CVE-2024-10468 (Potential race conditions in IndexedDB could have caused memory corrup ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10468
 CVE-2024-10463 (Video frames could have been leaked between origins in some situations ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10463
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10463
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10463
 CVE-2024-10462 (Truncation of a long URL could have allowed origin spoofing in a permi ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10462
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10462
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10462
 CVE-2024-10461 (In multipart/x-mixed-replace responses, `Content-Disposition: attachme ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10461
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10461
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10461
 CVE-2024-10460 (The origin of an external protocol handler prompt could have been obsc ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10460
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10460
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10460
 CVE-2024-10459 (An attacker could have caused a use-after-free when accessibility was  ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10459
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10459
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10459
 CVE-2024-10458 (A permission leak could have occurred from a trusted site to an untrus ...)
-	- firefox <unfixed>
+	- firefox 132.0-1
 	- firefox-esr 128.4.0esr-1
 	- thunderbird <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10458



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7adda586673a2278a9b663b9aa45d00c85512a14

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7adda586673a2278a9b663b9aa45d00c85512a14
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241030/d7cf0db7/attachment.htm>

More information about the debian-security-tracker-commits mailing list