[Git][security-tracker-team/security-tracker][master] thunderbird fixed in sid

Moritz Muehlenhoff (@jmm) jmm at debian.org
Wed Apr 30 13:33:12 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f00fe2fc by Moritz Mühlenhoff at 2025-04-30T14:32:59+02:00
thunderbird fixed in sid

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -162,7 +162,7 @@ CVE-2023-4377
 	REJECTED
 CVE-2025-4093 (Memory safety bug present in Firefox ESR 128.9, and Thunderbird 128.9. ...)
 	- firefox-esr 128.10.0esr-1
-	- thunderbird <unfixed>
+	- thunderbird 1:128.10.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-29/#CVE-2025-4093
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-32/#CVE-2025-4093
 CVE-2025-4092 (Memory safety bugs present in Firefox 137 and Thunderbird 137. Some of ...)
@@ -171,7 +171,7 @@ CVE-2025-4092 (Memory safety bugs present in Firefox 137 and Thunderbird 137. So
 CVE-2025-4091 (Memory safety bugs present in Firefox 137, Thunderbird 137, Firefox ES ...)
 	- firefox 138.0-1
 	- firefox-esr 128.10.0esr-1
-	- thunderbird <unfixed>
+	- thunderbird 1:128.10.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-28/#CVE-2025-4091
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-29/#CVE-2025-4091
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-32/#CVE-2025-4091
@@ -187,7 +187,7 @@ CVE-2025-4088 (A security vulnerability in Firefox allowed malicious sites to us
 CVE-2025-4087 (A vulnerability was identified in Firefox where XPath parsing could tr ...)
 	- firefox 138.0-1
 	- firefox-esr 128.10.0esr-1
-	- thunderbird <unfixed>
+	- thunderbird 1:128.10.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-28/#CVE-2025-4087
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-29/#CVE-2025-4087
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-32/#CVE-2025-4087
@@ -205,7 +205,7 @@ CVE-2025-4084 (Due to insufficient escaping of the special characters in the "co
 CVE-2025-4083 (A process isolation vulnerability in Firefox stemmed from improper han ...)
 	- firefox 138.0-1
 	- firefox-esr 128.10.0esr-1
-	- thunderbird <unfixed>
+	- thunderbird 1:128.10.0esr-1
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-28/#CVE-2025-4083
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-29/#CVE-2025-4083
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-32/#CVE-2025-4083



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f00fe2fc21eb5e2cc64142998c5639344cd1fe4e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f00fe2fc21eb5e2cc64142998c5639344cd1fe4e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250430/b50dd532/attachment.htm>

More information about the debian-security-tracker-commits mailing list