[Git][security-tracker-team/security-tracker][master] Add firefox-esr issues from mfsa2024-41

Salvatore Bonaccorso (@carnil) carnil at debian.org
Tue Sep 3 21:29:45 BST 2024 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7edbd6b6 by Salvatore Bonaccorso at 2024-09-03T22:29:08+02:00
Add firefox-esr issues from mfsa2024-41

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -15,16 +15,24 @@ CVE-2024-8385 (A difference in the handling of StructFields and ArrayTypes in WA
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8385
 CVE-2024-8384 (The JavaScript garbage collector could mis-color cross-compartment obj ...)
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8384
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-41/#CVE-2024-8384
 CVE-2024-8383 (Firefox normally asks for confirmation before asking the operating sys ...)
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8383
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-41/#CVE-2024-8383
 CVE-2024-8382 (Internal browser event interfaces were exposed to web content when pri ...)
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8382
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-41/#CVE-2024-8382
 CVE-2024-8381 (A potentially exploitable type confusion could be triggered when looki ...)
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-39/#CVE-2024-8381
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-41/#CVE-2024-8381
 CVE-2024-8374 (UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 are vulnerab ...)
 	TODO: check
 CVE-2024-8371



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7edbd6b6d0c678df7c7e5dfe61072b21762f36eb

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7edbd6b6d0c678df7c7e5dfe61072b21762f36eb
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240903/a5681f4f/attachment.htm>

More information about the debian-security-tracker-commits mailing list