[Git][security-tracker-team/security-tracker][master] Add new thunderbird issues from mfsa2020-04

Sat, 11 Jan 2020 12:05:16 -0800 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f653c93f by Salvatore Bonaccorso at 2020-01-11T21:02:44+01:00
Add new thunderbird issues from mfsa2020-04

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -22069,7 +22069,9 @@ CVE-2019-17026
        {DSA-4600-1 DLA-2061-1}
        - firefox 72.0.1-1 (bug #948452)
        - firefox-esr 68.4.1esr-1
+       - thunderbird 1:68.4.1-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-03/#CVE-2019-17026
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17026
 CVE-2019-17025 (Mozilla developers reported memory safety bugs present in 
Firefox 71.  ...)
        - firefox 72.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17025
@@ -22077,8 +22079,10 @@ CVE-2019-17024 (Mozilla developers reported memory 
safety bugs present in Firefo
        {DSA-4600-1 DLA-2061-1}
        - firefox 72.0-1
        - firefox-esr 68.4.0esr-1
+       - thunderbird 1:68.4.1-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17024
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17024
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17024
 CVE-2019-17023 (After a HelloRetryRequest has been sent, the client may 
negotiate a lo ...)
        - firefox 72.0-1
        - nss 2:3.49-1
@@ -22089,13 +22093,17 @@ CVE-2019-17022 (When pasting a <style> 
tag from the clipboard into
        {DSA-4600-1 DLA-2061-1}
        - firefox 72.0-1
        - firefox-esr 68.4.0esr-1
+       - thunderbird 1:68.4.1-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17022
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17022
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17022
 CVE-2019-17021 (During the initialization of a new content process, a race 
condition o ...)
        - firefox <not-affected> (Windows-specific)
        - firefox-esr <not-affected> (Windows-specific)
+       - thunderbird <not-affected> (Windows-specific)
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17021
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17021
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17021
 CVE-2019-17020 (If an XML file is served with a Content Security Policy and 
the XML fi ...)
        - firefox 72.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17020
@@ -22109,19 +22117,25 @@ CVE-2019-17017 (Due to a missing case handling object 
types, a type confusion vu
        {DSA-4600-1 DLA-2061-1}
        - firefox 72.0-1
        - firefox-esr 68.4.0esr-1
+       - thunderbird 1:68.4.1-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17017
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17017
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17017
 CVE-2019-17016 (When pasting a &amp;lt;style&amp;gt; tag from the clipboard 
into a ric ...)
        {DSA-4600-1 DLA-2061-1}
        - firefox 72.0-1
        - firefox-esr 68.4.0esr-1
+       - thunderbird 1:68.4.1-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17016
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17016
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17016
 CVE-2019-17015 (During the initialization of a new content process, a pointer 
offset c ...)
        - firefox <not-affected> (Windows-specific)
        - firefox-esr <not-affected> (Windows-specific)
+       - thunderbird <not-affected> (Windows-specific)
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-01/#CVE-2019-17015
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-02/#CVE-2019-17015
+       NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2020-04/#CVE-2019-17015
 CVE-2019-17014 (If an image had not loaded correctly (such as when it is not 
actually  ...)
        - firefox 71.0-1
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2019-36/#CVE-2019-17014



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f653c93fbd38d9e6143437ec7864c4b328c348a6

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f653c93fbd38d9e6143437ec7864c4b328c348a6
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to