Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: 1b44364b by Salvatore Bonaccorso at 2019-01-22T21:20:06Z Add assigned CVEs for thunderbird issues - - - - - 3 changed files: - data/CVE/list - data/DLA/list - data/DSA/list Changes: ===================================== data/CVE/list ===================================== @@ -19273,8 +19273,10 @@ CVE-2018-18498 {DSA-4354-1 DLA-1605-1} - firefox 64.0-1 - firefox-esr 60.4.0esr-1 + - thunderbird 1:60.4.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-18498 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18498 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-18498 CVE-2018-18497 RESERVED - firefox 64.0-1 @@ -19292,22 +19294,28 @@ CVE-2018-18494 {DSA-4354-1 DLA-1605-1} - firefox 64.0-1 - firefox-esr 60.4.0esr-1 + - thunderbird 1:60.4.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-18494 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18494 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-18494 CVE-2018-18493 RESERVED {DSA-4354-1 DLA-1605-1} - firefox 64.0-1 - firefox-esr 60.4.0esr-1 + - thunderbird 1:60.4.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-18493 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18493 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-18493 CVE-2018-18492 RESERVED {DSA-4354-1 DLA-1605-1} - firefox 64.0-1 - firefox-esr 60.4.0esr-1 + - thunderbird 1:60.4.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-18492 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-18492 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-18492 CVE-2018-18491 RESERVED CVE-2018-18490 @@ -21967,8 +21975,10 @@ CVE-2018-17466 (Incorrect texture handling in Angle in Google Chrome prior to .. [jessie] - chromium-browser <end-of-life> (End of life, see DSA 4020) - firefox 64.0-1 - firefox-esr 60.4.0esr-1 + - thunderbird 1:60.4.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-17466 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-17466 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-17466 CVE-2018-17465 (Incorrect implementation of object trimming in V8 in Google Chrome ...) {DSA-4330-1} - chromium-browser 70.0.3538.67-1 @@ -34960,8 +34970,10 @@ CVE-2018-12405 {DSA-4354-1 DLA-1605-1} - firefox 64.0-1 - firefox-esr 60.4.0esr-1 + - thunderbird 1:60.4.0-1 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-29/#CVE-2018-12405 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-30/#CVE-2018-12405 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2018-31/#CVE-2018-12405 CVE-2018-12404 [Cache side-channel variant of the Bleichenbacher attack] RESERVED - nss 2:3.41-1 ===================================== data/DLA/list ===================================== @@ -36,6 +36,7 @@ [02 Jan 2019] DLA-1625-1 tzdata - new upstream version [jessie] - tzdata 2018i-0+deb8u1 [02 Jan 2019] DLA-1624-1 thunderbird - security update + {CVE-2018-18498 CVE-2018-18494 CVE-2018-18493 CVE-2018-18492 CVE-2018-17466 CVE-2018-12405} [jessie] - thunderbird 1:60.4.0-1~deb8u1 [31 Dec 2018] DLA-1623-1 tar - security update {CVE-2018-20482} ===================================== data/DSA/list ===================================== @@ -28,6 +28,7 @@ {CVE-2019-3498} [stretch] - python-django 1:1.10.7-2+deb9u4 [01 Jan 2019] DSA-4362-1 thunderbird - security update + {CVE-2018-18498 CVE-2018-18494 CVE-2018-18493 CVE-2018-18492 CVE-2018-17466 CVE-2018-12405} [stretch] - thunderbird 1:60.4.0-1~deb9u1 [28 Dec 2018] DSA-4361-1 libextractor - security update {CVE-2018-20430 CVE-2018-20431} View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1b44364b100aeb01cf4b1ddb3a044036064392f7 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1b44364b100aeb01cf4b1ddb3a044036064392f7 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits