new mozilla issues

2 files changed, 20 insertions, 0 deletions

diff --git a/data/CVE/list b/data/CVE/list
index 17749df549..29bfabfeff 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -4897,12 +4897,28 @@ CVE-2021-38495
 	RESERVED
 CVE-2021-38494
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-38/#CVE-2021-38494
 CVE-2021-38493
 	RESERVED
+	- firefox <unfixed>
+	- firefox-esr <unfixed>
+	- thunderbird <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-42/#CVE-2021-38493
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-39/#CVE-2021-38493
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-38/#CVE-2021-38493
 CVE-2021-38492
 	RESERVED
+	- firefox <not-affected> (Only affects Windows)
+	- firefox-esr <not-affected> (Only affects Windows)
+	- thunderbird <not-affected> (Only affects Windows)
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-42/#CVE-2021-38492
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-39/#CVE-2021-38492
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-38/#CVE-2021-38492
 CVE-2021-38491
 	RESERVED
+	- firefox <unfixed>
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-38/#CVE-2021-38492
 CVE-2021-38490 (Altova MobileTogether Server before 7.3 SP1 allows XML exponential ent ...)
 	NOT-FOR-US: Altova MobileTogether Server
 CVE-2021-38489
@@ -25395,6 +25411,8 @@ CVE-2021-29994
 	RESERVED
 CVE-2021-29993
 	RESERVED
+	- firefox <not-affected> (Specific to Android)
+	NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-38/#CVE-2021-38492
 CVE-2021-29992
 	RESERVED
 CVE-2021-29991
diff --git a/data/dsa-needed.txt b/data/dsa-needed.txt
index f51933bb4a..556647e396 100644
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -21,6 +21,8 @@ chromium
 --
 djvulibre
 --
+firefox-esr (jmm)
+--
 icu
 --
 linux (carnil)