diff options
author | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-12 21:18:25 +0200 |
---|---|---|
committer | Salvatore Bonaccorso <carnil@debian.org> | 2021-10-12 21:18:25 +0200 |
commit | 2dee7b9db3a21b087605a4b55206a2068e15cf0f (patch) | |
tree | 3c285cb803207ccc717f183e6d6a3a3e9f024bab /data | |
parent | 4e9d435c957c97e9f0c9a82fbd6037027c2bc1d6 (diff) |
Add entries for thunderbird for mfsa2021-{46,47}
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list.2021 | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021 index cc8231c8b8..cfaea3cc5c 100644 --- a/data/CVE/list.2021 +++ b/data/CVE/list.2021 @@ -8673,20 +8673,28 @@ CVE-2021-38503 RESERVED CVE-2021-38502 RESERVED + - thunderbird <undetermined> + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38502 + TODO: double check, it was only referenced in mfsa2021-47 but not mfsa2021-46, but issue is about attack on SMTP STARTTLS connections CVE-2021-38501 RESERVED - firefox 93.0-1 - firefox-esr <not-affected> (Only affect Firefox 91 not in any supported suite in vulnerable version) + - thunderbird <not-affected> (Only affects Thunderbird 91 not in any supported suite in vulnerable version) NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38501 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38501 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38501 CVE-2021-38500 RESERVED {DSA-4981-1 DLA-2782-1} - firefox 93.0-1 - firefox-esr 91.2.0esr-1 + - thunderbird <unfixed> NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38500 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-44/#CVE-2021-38500 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38500 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-46/#CVE-2021-38500 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38500 CVE-2021-38499 RESERVED - firefox 93.0-1 @@ -8695,22 +8703,29 @@ CVE-2021-38498 RESERVED - firefox 93.0-1 - firefox-esr <not-affected> (Only affect Firefox 91 not in any supported suite in vulnerable version) + - thunderbird <not-affected> (Only affects Thunderbird 91 not in any supported suite in vulnerable version) NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38498 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38498 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38498 CVE-2021-38497 RESERVED - firefox 93.0-1 - firefox-esr <not-affected> (Only affect Firefox 91 not in any supported suite in vulnerable version) + - thunderbird <not-affected> (Only affects Thunderbird 91 not in any supported suite in vulnerable version) NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38497 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38497 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38497 CVE-2021-38496 RESERVED {DSA-4981-1 DLA-2782-1} - firefox 93.0-1 - firefox-esr 91.2.0esr-1 + - thunderbird <unfixed> NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38496 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-44/#CVE-2021-38496 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38496 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-46/#CVE-2021-38496 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38496 CVE-2021-38495 RESERVED - thunderbird <not-affected> (Vulnerable code introduced later) @@ -21774,12 +21789,14 @@ CVE-2021-32811 (Zope is an open-source web application server. Zope versions pri CVE-2021-32810 (crossbeam-deque is a package of work-stealing deques for building task ...) - firefox 93.0-1 - firefox-esr <not-affected> (Only affect Firefox 91 not in any supported suite in vulnerable version) + - thunderbird <not-affected> (Only affects Thunderbird 91 not in any supported suite in vulnerable version) - rust-crossbeam-deque 0.7.4-1 (bug #993146) [bullseye] - rust-crossbeam-deque <no-dsa> (Minor issue) [buster] - rust-crossbeam-deque <no-dsa> (Minor issue) NOTE: https://rustsec.org/advisories/RUSTSEC-2021-0093.html NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-32810 NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-32810 + NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-32810 CVE-2021-32809 (ckeditor is an open source WYSIWYG HTML editor with rich content suppo ...) - ckeditor 4.16.2+dfsg-1 (bug #992291) [bullseye] - ckeditor <no-dsa> (Minor issue) |