[Git][security-tracker-team/security-tracker][master] new firefox issues from pwn2own

Moritz Muehlenhoff (@jmm) jmm at debian.org
Sun May 18 00:01:19 BST 2025 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9b7e2ce8 by Moritz Muehlenhoff at 2025-05-18T01:00:41+02:00
new firefox issues from pwn2own

- - - - -


2 changed files:

- data/CVE/list
- data/dsa-needed.txt


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,3 +1,13 @@
+CVE-2025-4921
+	- firefox <unfixed>
+	- firefox-esr <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-36/#CVE-2025-4921
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-37/#CVE-2025-4921
+CVE-2025-4920
+	- firefox <unfixed>
+	- firefox-esr <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-36/#CVE-2025-4920
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2025-37/#CVE-2025-4920
 CVE-2025-4836 (A vulnerability was found in Projectworlds Life Insurance Management S ...)
 	NOT-FOR-US: Project Worlds
 CVE-2025-4835 (A vulnerability was found in TOTOLINK A702R, A3002R and A3002RU 3.0.0- ...)


=====================================
data/dsa-needed.txt
=====================================
@@ -14,6 +14,8 @@ If needed, specify the release by adding a slash after the name of the source pa
 --
 commons-vfs (apo)
 --
+firefox-esr (jmm)
+--
 frr
   coordination with the maintainer ongoing, Daniel Baumann proposing an update
 --



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b7e2ce868df77cccdb98107c4d7a55bc261ed10

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9b7e2ce868df77cccdb98107c4d7a55bc261ed10
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250517/48e44fe9/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list