Author: jmm Date: 2017-12-05 15:41:50 +0000 (Tue, 05 Dec 2017) New Revision: 58268
Modified: data/CVE/list Log: no need to track android bugs for firefox, those only affect Firefox builds for Android Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-12-05 15:37:29 UTC (rev 58267) +++ data/CVE/list 2017-12-05 15:41:50 UTC (rev 58268) @@ -50773,11 +50773,6 @@ NOT-FOR-US: Fluoride Bluetooth stack in Android CVE-2017-0841 (A remote code execution vulnerability in the Android system ...) - android-platform-system-core <unfixed> (unimportant) - - firefox <unfixed> - - firefox-esr <unfixed> - - icedove <unfixed> - - thunderbird <unfixed> - TODO: Vulnerable code exists in firefox/firefox-esr and thunderbird/icedove but not sure if affected NOTE: Fixed by https://android.googlesource.com/platform/system/core/+/47efc676c849e3abf32001d66e2d6eb887e83c48%5E!/ CVE-2017-0840 (An information disclosure vulnerability in the Android media framework ...) NOT-FOR-US: Android media framework _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits