[Git][security-tracker-team/security-tracker][master] Track fixed version for firefox-esr via unstable for mfsa2024-22

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
fde9a919 by Salvatore Bonaccorso at 2024-05-15T06:22:54+02:00
Track fixed version for firefox-esr via unstable for mfsa2024-22

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -408,7 +408,7 @@ CVE-2024-4778 (Memory safety bugs present in Firefox 125. 
Some of these bugs sho
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4778
 CVE-2024-4777 (Memory safety bugs present in Firefox 125, Firefox ESR 115.10, 
and Thu ...)
        - firefox 126.0-1
-       - firefox-esr <unfixed>
+       - firefox-esr 115.11.0esr-1
        - thunderbird <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4777
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4777
@@ -433,28 +433,28 @@ CVE-2024-4771 (A memory allocation check was missing 
which would lead to a use-a
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4771
 CVE-2024-4770 (When saving a page to PDF, certain font styles could have led 
to a pot ...)
        - firefox 126.0-1
-       - firefox-esr <unfixed>
+       - firefox-esr 115.11.0esr-1
        - thunderbird <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4770
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4770
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-23/#CVE-2024-4769
 CVE-2024-4769 (When importing resources using Web Workers, error messages 
would disti ...)
        - firefox 126.0-1
-       - firefox-esr <unfixed>
+       - firefox-esr 115.11.0esr-1
        - thunderbird <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4769
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4769
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-23/#CVE-2024-4769
 CVE-2024-4768 (A bug in popup notifications' interaction with WebAuthn made it 
easier ...)
        - firefox 126.0-1
-       - firefox-esr <unfixed>
+       - firefox-esr 115.11.0esr-1
        - thunderbird <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4768
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4768
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-23/#CVE-2024-4768
 CVE-2024-4767 (If the `browser.privatebrowsing.autostart` preference is 
enabled, Inde ...)
        - firefox 126.0-1
-       - firefox-esr <unfixed>
+       - firefox-esr 115.11.0esr-1
        - thunderbird <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4767
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4767
@@ -467,7 +467,7 @@ CVE-2024-4765 (Web application manifests were stored by 
using an insecure MD5 ha
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4765
 CVE-2024-4367 (A type check was missing when handling fonts in PDF.js, which 
would al ...)
        - firefox 126.0-1
-       - firefox-esr <unfixed>
+       - firefox-esr 115.11.0esr-1
        - thunderbird <unfixed>
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-21/#CVE-2024-4367
        NOTE: 
https://www.mozilla.org/en-US/security/advisories/mfsa2024-22/#CVE-2024-4367



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fde9a919943fd2fc0a10ae8df962ea410ff02db3

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/fde9a919943fd2fc0a10ae8df962ea410ff02db3
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits