Author: jmm
Date: 2017-12-05 15:41:50 +0000 (Tue, 05 Dec 2017)
New Revision: 58268
Modified:
data/CVE/list
Log:
no need to track android bugs for firefox, those only affect Firefox builds for
Android
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-05 15:37:29 UTC (rev 58267)
+++ data/CVE/list 2017-12-05 15:41:50 UTC (rev 58268)
@@ -50773,11 +50773,6 @@
NOT-FOR-US: Fluoride Bluetooth stack in Android
CVE-2017-0841 (A remote code execution vulnerability in the Android system ...)
- android-platform-system-core <unfixed> (unimportant)
- - firefox <unfixed>
- - firefox-esr <unfixed>
- - icedove <unfixed>
- - thunderbird <unfixed>
- TODO: Vulnerable code exists in firefox/firefox-esr and
thunderbird/icedove but not sure if affected
NOTE: Fixed by
https://android.googlesource.com/platform/system/core/+/47efc676c849e3abf32001d66e2d6eb887e83c48%5E!/
CVE-2017-0840 (An information disclosure vulnerability in the Android media
framework ...)
NOT-FOR-US: Android media framework
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
