Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
01e263ff by Salvatore Bonaccorso at 2023-08-03T22:18:24+02:00
Track thunderbird fixes via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -207,7 +207,7 @@ CVE-2023-4057 (Memory safety bugs present in Firefox 115,
Firefox ESR 115.0, and
[bookworm] - firefox-esr <not-affected> (Only affects Firefox ESR 115.1)
[bullseye] - firefox-esr <not-affected> (Only affects Firefox ESR 115.1)
[buster] - firefox-esr <not-affected> (Only affects Firefox ESR 115.1)
- - thunderbird <unfixed>
+ - thunderbird 1:115.1.0-1
[bookworm] - thunderbird <not-affected> (Only affects Thunderbird 115.1)
[bullseye] - thunderbird <not-affected> (Only affects Thunderbird 115.1)
[buster] - thunderbird <not-affected> (Only affects Thunderbird 115.1)
@@ -217,7 +217,7 @@ CVE-2023-4057 (Memory safety bugs present in Firefox 115,
Firefox ESR 115.0, and
CVE-2023-4056 (Memory safety bugs present in Firefox 115, Firefox ESR 115.0,
Firefox ...)
- firefox 116.0-1
- firefox-esr 115.1.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:115.1.0-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4056
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4056
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4056
@@ -226,7 +226,7 @@ CVE-2023-4056 (Memory safety bugs present in Firefox 115,
Firefox ESR 115.0, Fir
CVE-2023-4055 (When the number of cookies per domain was exceeded in
`document.cookie ...)
- firefox 116.0-1
- firefox-esr 115.1.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:115.1.0-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4055
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4055
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4055
@@ -257,7 +257,7 @@ CVE-2023-4051 (A website could have obscured the full
screen notification by usi
CVE-2023-4050 (In some cases, an untrusted input stream was copied to a stack
buffer ...)
- firefox 116.0-1
- firefox-esr 115.1.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:115.1.0-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4050
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4050
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4050
@@ -266,7 +266,7 @@ CVE-2023-4050 (In some cases, an untrusted input stream was
copied to a stack bu
CVE-2023-4049 (Race conditions in reference counting code were found through
code ins ...)
- firefox 116.0-1
- firefox-esr 115.1.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:115.1.0-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4049
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4049
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4049
@@ -275,7 +275,7 @@ CVE-2023-4049 (Race conditions in reference counting code
were found through cod
CVE-2023-4048 (An out-of-bounds read could have led to an exploitable crash
when pars ...)
- firefox 116.0-1
- firefox-esr 115.1.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:115.1.0-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4048
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4048
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4048
@@ -284,7 +284,7 @@ CVE-2023-4048 (An out-of-bounds read could have led to an
exploitable crash when
CVE-2023-4047 (A bug in popup notifications delay calculation could have made
it poss ...)
- firefox 116.0-1
- firefox-esr 115.1.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:115.1.0-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4047
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4047
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4047
@@ -293,7 +293,7 @@ CVE-2023-4047 (A bug in popup notifications delay
calculation could have made it
CVE-2023-4046 (In some circumstances, a stale value could have been used for a
global ...)
- firefox 116.0-1
- firefox-esr 115.1.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:115.1.0-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4046
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4046
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4046
@@ -302,7 +302,7 @@ CVE-2023-4046 (In some circumstances, a stale value could
have been used for a g
CVE-2023-4045 (Offscreen Canvas did not properly track cross-origin tainting,
which c ...)
- firefox 116.0-1
- firefox-esr 115.1.0esr-1
- - thunderbird <unfixed>
+ - thunderbird 1:115.1.0-1
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4045
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4045
NOTE:
https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4045
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01e263ff9295f3bff14a380b38b09b21735f73ec
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01e263ff9295f3bff14a380b38b09b21735f73ec
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
