[Git][security-tracker-team/security-tracker][master] Track fixed version for thunderbird via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Oct 31 04:58:37 GMT 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7da37645 by Salvatore Bonaccorso at 2024-10-31T05:57:33+01:00
Track fixed version for thunderbird via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -526,28 +526,28 @@ CVE-2017-20195 (A vulnerability was found in LUNAD3v AreaLoad up to 1a1103182ed6
CVE-2024-10467 (Memory safety bugs present in Firefox 131, Firefox ESR 128.3, and Thun ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10467
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10467
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10467
CVE-2024-10466 (By sending a specially crafted push message, a remote server could hav ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10466
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10466
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10466
CVE-2024-10465 (A clipboard "paste" button could persist across tabs which allowed a s ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10465
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10465
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10465
CVE-2024-10464 (Repeated writes to history interface attributes could have been used t ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10464
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10464
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10464
@@ -557,42 +557,42 @@ CVE-2024-10468 (Potential race conditions in IndexedDB could have caused memory
CVE-2024-10463 (Video frames could have been leaked between origins in some situations ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10463
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10463
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10463
CVE-2024-10462 (Truncation of a long URL could have allowed origin spoofing in a permi ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10462
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10462
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10462
CVE-2024-10461 (In multipart/x-mixed-replace responses, `Content-Disposition: attachme ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10461
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10461
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10461
CVE-2024-10460 (The origin of an external protocol handler prompt could have been obsc ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10460
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10460
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10460
CVE-2024-10459 (An attacker could have caused a use-after-free when accessibility was ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10459
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10459
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10459
CVE-2024-10458 (A permission leak could have occurred from a trusted site to an untrus ...)
- firefox 132.0-1
- firefox-esr 128.4.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:128.4.0esr-1
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-55/#CVE-2024-10458
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-56/#CVE-2024-10458
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-58/#CVE-2024-10458
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7da37645c7707938256159694e8f546d708c2357
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7da37645c7707938256159694e8f546d708c2357
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20241031/f9ab9c93/attachment.htm>
More information about the debian-security-tracker-commits
mailing list