[Git][security-tracker-team/security-tracker][master] Add new firefox issues from mfsa2024-39
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Tue Sep 3 21:27:21 BST 2024
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
22b3979c by Salvatore Bonaccorso at 2024-09-03T22:26:44+02:00
Add new firefox issues from mfsa2024-39
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,21 +1,30 @@
CVE-2024-8389 (Memory safety bugs present in Firefox 129. Some of these bugs showed e ...)
- TODO: check
+ - firefox <unfixed>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8389
CVE-2024-8388 (Multiple prompts and panels from both Firefox and the Android OS could ...)
- TODO: check
+ - firefox <unfixed>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8388
CVE-2024-8387 (Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thun ...)
- TODO: check
+ - firefox <unfixed>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8387
CVE-2024-8386 (If a site had been granted the permission to open popup windows, it co ...)
- TODO: check
+ - firefox <unfixed>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8386
CVE-2024-8385 (A difference in the handling of StructFields and ArrayTypes in WASM co ...)
- TODO: check
+ - firefox <unfixed>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8385
CVE-2024-8384 (The JavaScript garbage collector could mis-color cross-compartment obj ...)
- TODO: check
+ - firefox <unfixed>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8384
CVE-2024-8383 (Firefox normally asks for confirmation before asking the operating sys ...)
- TODO: check
+ - firefox <unfixed>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8383
CVE-2024-8382 (Internal browser event interfaces were exposed to web content when pri ...)
- TODO: check
+ - firefox <unfixed>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8382
CVE-2024-8381 (A potentially exploitable type confusion could be triggered when looki ...)
- TODO: check
+ - firefox <unfixed>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8381
CVE-2024-8374 (UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 are vulnerab ...)
TODO: check
CVE-2024-8371
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22b3979cd40149798b7441b4a29c4563a0e732b1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22b3979cd40149798b7441b4a29c4563a0e732b1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240903/941f19a8/attachment.htm>
More information about the debian-security-tracker-commits
mailing list