Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 92f17aa0 by Salvatore Bonaccorso at 2024-02-20T23:07:38+01:00 Add new firefox issues from mfsa2024-05 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -127,29 +127,41 @@ CVE-2024-1586 (The Schema & Structured Data for WP & AMP plugin for WordPress is CVE-2024-1570 (The Paid Membership Plugin, Ecommerce, User Registration Form, Login F ...) NOT-FOR-US: WordPress plugin CVE-2024-1557 (Memory safety bugs present in Firefox 122. Some of these bugs showed e ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1557 CVE-2024-1556 (The incorrect object was checked for NULL in the built-in profiler, po ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1556 CVE-2024-1555 (When opening a website using the `firefox://` protocol handler, SameSi ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1555 CVE-2024-1554 (The `fetch()` API and navigation incorrectly shared the same cache, as ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1554 CVE-2024-1553 (Memory safety bugs present in Firefox 122, Firefox ESR 115.7, and Thun ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1553 CVE-2024-1552 (Incorrect code generation could have led to unexpected numeric convers ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1552 CVE-2024-1551 (Set-Cookie response headers were being incorrectly honored in multipar ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1551 CVE-2024-1550 (A malicious website could have used a combination of exiting fullscree ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1550 CVE-2024-1549 (If a website set a large custom cursor, portions of the cursor could h ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1549 CVE-2024-1548 (A website could have obscured the fullscreen notification by using a d ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1548 CVE-2024-1547 (Through a series of API calls and redirects, an attacker-controlled al ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1547 CVE-2024-1546 (When storing and re-accessing data on a networking channel, the length ...) - TODO: check + - firefox <unfixed> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2024-05/#CVE-2024-1546 CVE-2024-1519 (The Paid Membership Plugin, Ecommerce, User Registration Form, Login F ...) TODO: check CVE-2024-1496 (The Featured Image from URL (FIFU) plugin for WordPress is vulnerable ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92f17aa01e56aa7d070efaf7fd03cdac457d0c70 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/92f17aa01e56aa7d070efaf7fd03cdac457d0c70 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits