summaryrefslogtreecommitdiffstats
path: root/data
diff options
context:
space:
mode:
authorSalvatore Bonaccorso <carnil@debian.org>2021-10-12 21:18:25 +0200
committerSalvatore Bonaccorso <carnil@debian.org>2021-10-12 21:18:25 +0200
commit2dee7b9db3a21b087605a4b55206a2068e15cf0f (patch)
tree3c285cb803207ccc717f183e6d6a3a3e9f024bab /data
parent4e9d435c957c97e9f0c9a82fbd6037027c2bc1d6 (diff)
Add entries for thunderbird for mfsa2021-{46,47}
Diffstat (limited to 'data')
-rw-r--r--data/CVE/list.202117
1 files changed, 17 insertions, 0 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index cc8231c8b8..cfaea3cc5c 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -8673,20 +8673,28 @@ CVE-2021-38503
RESERVED
CVE-2021-38502
RESERVED
+ - thunderbird <undetermined>
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38502
+ TODO: double check, it was only referenced in mfsa2021-47 but not mfsa2021-46, but issue is about attack on SMTP STARTTLS connections
CVE-2021-38501
RESERVED
- firefox 93.0-1
- firefox-esr <not-affected> (Only affect Firefox 91 not in any supported suite in vulnerable version)
+ - thunderbird <not-affected> (Only affects Thunderbird 91 not in any supported suite in vulnerable version)
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38501
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38501
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38501
CVE-2021-38500
RESERVED
{DSA-4981-1 DLA-2782-1}
- firefox 93.0-1
- firefox-esr 91.2.0esr-1
+ - thunderbird <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38500
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-44/#CVE-2021-38500
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38500
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-46/#CVE-2021-38500
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38500
CVE-2021-38499
RESERVED
- firefox 93.0-1
@@ -8695,22 +8703,29 @@ CVE-2021-38498
RESERVED
- firefox 93.0-1
- firefox-esr <not-affected> (Only affect Firefox 91 not in any supported suite in vulnerable version)
+ - thunderbird <not-affected> (Only affects Thunderbird 91 not in any supported suite in vulnerable version)
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38498
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38498
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38498
CVE-2021-38497
RESERVED
- firefox 93.0-1
- firefox-esr <not-affected> (Only affect Firefox 91 not in any supported suite in vulnerable version)
+ - thunderbird <not-affected> (Only affects Thunderbird 91 not in any supported suite in vulnerable version)
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38497
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38497
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38497
CVE-2021-38496
RESERVED
{DSA-4981-1 DLA-2782-1}
- firefox 93.0-1
- firefox-esr 91.2.0esr-1
+ - thunderbird <unfixed>
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-38496
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-44/#CVE-2021-38496
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-38496
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-46/#CVE-2021-38496
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-38496
CVE-2021-38495
RESERVED
- thunderbird <not-affected> (Vulnerable code introduced later)
@@ -21774,12 +21789,14 @@ CVE-2021-32811 (Zope is an open-source web application server. Zope versions pri
CVE-2021-32810 (crossbeam-deque is a package of work-stealing deques for building task ...)
- firefox 93.0-1
- firefox-esr <not-affected> (Only affect Firefox 91 not in any supported suite in vulnerable version)
+ - thunderbird <not-affected> (Only affects Thunderbird 91 not in any supported suite in vulnerable version)
- rust-crossbeam-deque 0.7.4-1 (bug #993146)
[bullseye] - rust-crossbeam-deque <no-dsa> (Minor issue)
[buster] - rust-crossbeam-deque <no-dsa> (Minor issue)
NOTE: https://rustsec.org/advisories/RUSTSEC-2021-0093.html
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-43/#CVE-2021-32810
NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-45/#CVE-2021-32810
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2021-47/#CVE-2021-32810
CVE-2021-32809 (ckeditor is an open source WYSIWYG HTML editor with rich content suppo ...)
- ckeditor 4.16.2+dfsg-1 (bug #992291)
[bullseye] - ckeditor <no-dsa> (Minor issue)

© 2014-2024 Faster IT GmbH | imprint | privacy policy