[Git][security-tracker-team/security-tracker][master] Add new firefox-esr issues from mfsa2025-09

Tue Feb 4 19:14:00 GMT 2025


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
2ce5d7f5 by Salvatore Bonaccorso at 2025-02-04T20:13:29+01:00
Add new firefox-esr issues from mfsa2025-09

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -3,34 +3,50 @@ CVE-2025-1020
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1020
 CVE-2025-1017
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1017
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-09/#CVE-2025-1017
 CVE-2025-1016
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1016
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-09/#CVE-2025-1016
 CVE-2025-1014
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1014
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-09/#CVE-2025-1014
 CVE-2025-1013
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1013
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-09/#CVE-2025-1013
 CVE-2025-1019
 	- firefox <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1019
 CVE-2025-1012
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1012
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-09/#CVE-2025-1012
 CVE-2025-1011
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1011
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-09/#CVE-2025-1011
 CVE-2025-1018
 	- firefox <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1018
 CVE-2025-1010
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1010
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-09/#CVE-2025-1010
 CVE-2025-1009
 	- firefox <unfixed>
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-07/#CVE-2025-1009
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-09/#CVE-2025-1009
 CVE-2025-0451
 	- chromium <unfixed>
 	[bullseye] - chromium <end-of-life> (see #1061268)
@@ -19306,7 +19322,9 @@ CVE-2024-11698 (A flaw in handling fullscreen transitions may have inadvertently
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-68/#CVE-2024-11698
 CVE-2024-11704 (A double-free issue could have occurred in `sec_pkcs7_decoder_start_de ...)
 	- firefox 134.0-1
+	- firefox-esr <unfixed>
 	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-63/#CVE-2024-11704
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-09/#CVE-2024-11704
 CVE-2024-11697 (When handling keypress events, an attacker may have been able to trick ...)
 	{DSA-5821-1 DSA-5820-1 DLA-3971-1 DLA-3969-1}
 	- firefox 133.0-1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ce5d7f5a7eb6bc2f928149cc89cf4e68c2bd923

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/2ce5d7f5a7eb6bc2f928149cc89cf4e68c2bd923
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250204/55e0e849/attachment-0001.htm>
