Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 01e263ff by Salvatore Bonaccorso at 2023-08-03T22:18:24+02:00 Track thunderbird fixes via unstable - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -207,7 +207,7 @@ CVE-2023-4057 (Memory safety bugs present in Firefox 115, Firefox ESR 115.0, and [bookworm] - firefox-esr <not-affected> (Only affects Firefox ESR 115.1) [bullseye] - firefox-esr <not-affected> (Only affects Firefox ESR 115.1) [buster] - firefox-esr <not-affected> (Only affects Firefox ESR 115.1) - - thunderbird <unfixed> + - thunderbird 1:115.1.0-1 [bookworm] - thunderbird <not-affected> (Only affects Thunderbird 115.1) [bullseye] - thunderbird <not-affected> (Only affects Thunderbird 115.1) [buster] - thunderbird <not-affected> (Only affects Thunderbird 115.1) @@ -217,7 +217,7 @@ CVE-2023-4057 (Memory safety bugs present in Firefox 115, Firefox ESR 115.0, and CVE-2023-4056 (Memory safety bugs present in Firefox 115, Firefox ESR 115.0, Firefox ...) - firefox 116.0-1 - firefox-esr 115.1.0esr-1 - - thunderbird <unfixed> + - thunderbird 1:115.1.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4056 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4056 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4056 @@ -226,7 +226,7 @@ CVE-2023-4056 (Memory safety bugs present in Firefox 115, Firefox ESR 115.0, Fir CVE-2023-4055 (When the number of cookies per domain was exceeded in `document.cookie ...) - firefox 116.0-1 - firefox-esr 115.1.0esr-1 - - thunderbird <unfixed> + - thunderbird 1:115.1.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4055 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4055 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4055 @@ -257,7 +257,7 @@ CVE-2023-4051 (A website could have obscured the full screen notification by usi CVE-2023-4050 (In some cases, an untrusted input stream was copied to a stack buffer ...) - firefox 116.0-1 - firefox-esr 115.1.0esr-1 - - thunderbird <unfixed> + - thunderbird 1:115.1.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4050 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4050 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4050 @@ -266,7 +266,7 @@ CVE-2023-4050 (In some cases, an untrusted input stream was copied to a stack bu CVE-2023-4049 (Race conditions in reference counting code were found through code ins ...) - firefox 116.0-1 - firefox-esr 115.1.0esr-1 - - thunderbird <unfixed> + - thunderbird 1:115.1.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4049 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4049 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4049 @@ -275,7 +275,7 @@ CVE-2023-4049 (Race conditions in reference counting code were found through cod CVE-2023-4048 (An out-of-bounds read could have led to an exploitable crash when pars ...) - firefox 116.0-1 - firefox-esr 115.1.0esr-1 - - thunderbird <unfixed> + - thunderbird 1:115.1.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4048 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4048 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4048 @@ -284,7 +284,7 @@ CVE-2023-4048 (An out-of-bounds read could have led to an exploitable crash when CVE-2023-4047 (A bug in popup notifications delay calculation could have made it poss ...) - firefox 116.0-1 - firefox-esr 115.1.0esr-1 - - thunderbird <unfixed> + - thunderbird 1:115.1.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4047 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4047 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4047 @@ -293,7 +293,7 @@ CVE-2023-4047 (A bug in popup notifications delay calculation could have made it CVE-2023-4046 (In some circumstances, a stale value could have been used for a global ...) - firefox 116.0-1 - firefox-esr 115.1.0esr-1 - - thunderbird <unfixed> + - thunderbird 1:115.1.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4046 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4046 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4046 @@ -302,7 +302,7 @@ CVE-2023-4046 (In some circumstances, a stale value could have been used for a g CVE-2023-4045 (Offscreen Canvas did not properly track cross-origin tainting, which c ...) - firefox 116.0-1 - firefox-esr 115.1.0esr-1 - - thunderbird <unfixed> + - thunderbird 1:115.1.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-29/#CVE-2023-4045 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-30/#CVE-2023-4045 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2023-31/#CVE-2023-4045 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01e263ff9295f3bff14a380b38b09b21735f73ec -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/01e263ff9295f3bff14a380b38b09b21735f73ec You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits