1bfbdf2b4a
Fix-ups for recent advisories
...
* The ANGLE bug fixed in the recent round of releases (CVE-2021-30547) was first fixed upstream and Google issued the CVE. Removing this from the feed.
* mfsa2021-32 had the wrong Hub bug's CVE
* mfsa2021-32 referenced a Thunderbird bug
2021-07-26 22:16:10 -07:00
6c5e7c32d5
Add Advisories for Hubs and Mozilla VPN
2021-07-15 14:07:24 -04:00
5ebb74dc30
Add Thunderbird 78.12 Advisories
2021-07-13 14:05:47 -04:00
3ffe8911e4
Advisories for Firefox 90 and Firefox ESR 78.12 ( #27 )
...
* Advisories for Firefox 90 and Firefox ESR 78.12
2021-07-13 14:04:15 +02:00
6deb9a2a0e
Advisory for 89.0.1
2021-06-15 10:26:52 -04:00
a9fb0002be
Add FPVI&SCSB disclosure for Firefox ESR 78.9 and Firefox 87
2021-06-08 12:26:40 -04:00
69c7798b88
advisories for thunderbird 78.11
2021-06-03 15:11:27 +02:00
6521d43e8c
Fix typo in mfsa2021-24
...
Reported-by: Emilio Pozuelo Monfort <pochu@debian.org>
2021-06-02 10:57:25 +02:00
43ec3c1337
Move iOS' -23 to -25
2021-06-01 13:10:18 -04:00
990ceb4e16
Merge remote-tracking branch 'foundation-private/fx-89-advisories'
2021-06-01 12:55:37 +02:00
c7d6ba6d5d
Fix date for iOS advisory
2021-05-28 16:57:52 -04:00
66f5b1317d
Advisories for iOS Release 34.0
2021-05-28 14:34:57 -04:00
82fa486e49
Advisories for Firefox 89, Firefox ESR 78.11
2021-05-28 10:38:14 +02:00
5e308db5ef
Add Thunderbird 78.10.2
2021-05-17 15:41:55 -04:00
5de07c238d
Fix year for mfsa2021-21.yml
2021-05-06 17:01:46 -04:00
1b09030036
Add mfsa2021-21
2021-05-06 16:53:55 -04:00
0f29a993b7
Fix a typo
2021-05-05 09:33:26 -04:00
101eac0f89
Add 88.0.1 Advisory
2021-05-04 13:50:00 -04:00
f1d4f1e49a
Add Thunderbird 78.10.1 advisory
2021-05-04 11:58:32 -04:00
655b0a7c2f
fix announce date for mfsa2021-18
2021-05-04 09:50:14 -04:00
a8e90cca9c
add in the maintenance service advisory
2021-05-04 09:46:21 -04:00
1fc2336ea1
Fix version number in mfsa2021-17
...
Reported-by: Moritz Mühlenhoff <jmm@debian.org>
2021-04-21 16:10:38 +02:00
930cccadab
Add an older advisory for 78.8.1 (and fix a typo in an earlier one)
2021-04-20 12:22:27 -04:00
06e18086f3
Add a low-severity fix in an older Thunderbird release
2021-04-20 12:17:07 -04:00
606b005bf4
Merge remote-tracking branch 'foundation-private/advisories-fx88-esr78.10'
2021-04-19 14:23:38 +02:00
ee1222ce56
Merge remote-tracking branch 'foundation-private/advisories-thunderbird-78.10'
2021-04-19 14:23:27 +02:00
3ce936d945
Advisories for Firefox 88, Firefox ESR 78.10
2021-04-19 11:23:25 +02:00
d6e7b8cb80
Turns out this repo isn't synced with the other. Next advisory is 14, not 13.
2021-04-19 10:54:46 +02:00
258afddef9
Update and rename mfsa2021-16.yml to mfsa2021-13.yml
2021-04-19 10:52:17 +02:00
3b1f57410c
thunderbird 78.10 advisories
2021-04-16 17:23:50 +02:00
174c4b5424
Fix ID for bug 1666236
...
Reported-by: Salvatore Bonaccorso <carnil@debian.org>
2021-04-13 18:29:16 +00:00
21eb4fded2
Add Thunderbird 78.9.1
2021-04-08 15:40:17 -04:00
bf9e061282
Add an advisory for the Angle update
2021-03-24 13:25:31 -04:00
bb598df183
Correct the credit for Omair now and in the future
2021-03-24 11:44:06 -04:00
ef53d0c532
Add Thunderbird Advisories
2021-03-22 10:16:23 -04:00
fd0615197c
Add advisories for 87; and update an earlier advisory
2021-03-19 13:24:26 -04:00
6db3b0401e
Correct a few things I missed from the advisories and add Thunderbird's
2021-02-23 10:52:33 -05:00
1f3fc10aa5
fix double bug items
2021-02-23 14:24:30 +01:00
d2d6a13fa5
Firefox 86.0 and ESR78.8.0 releases advisories
2021-02-23 14:04:51 +01:00
9e4889b7b6
Clarify that the sec fix is windows-only
2021-02-05 16:09:56 -05:00
557dd4085a
Add 85.0.1 advisory
2021-02-04 13:18:04 -05:00
333af5a084
Add thunderbird 78.7 advisories
2021-01-26 14:12:25 -05:00
6f54e1c639
Add advisories for Firefox 85 and Firefox ESR 78.7
2021-01-26 14:28:02 +01:00
ecf5cfaa03
Add Thunderbird 78.6.1 Release
2021-01-11 12:25:49 -05:00
e6904e0aba
Add 84.0.2 advisory
2021-01-05 15:19:52 -05:00
fca2d63aff
Add Advisories for Firefox 84, 78.6, Thunderbird
2020-12-14 13:47:59 -05:00
d73b77c374
Add Thunderbird 78.5.1 advisories
2020-12-01 20:50:51 -05:00
1ba99805cb
fix a comment
2020-11-17 13:04:28 +01:00
c1fa39e9c2
Add advisories for 83 and 78.5
2020-11-16 12:17:08 -05:00
6ccf43605c
Add Thunderbird to the list
2020-11-09 17:02:38 -05:00
45d07b044d
Add advisory for chemspill
2020-11-09 00:52:56 -05:00
67df9e001c
Fix date on mfsa2020-48
2020-11-04 14:43:34 -05:00
203e61cf5d
Add Mozilla VPN oauth advisory
2020-11-04 14:42:05 -05:00
9af59018fb
Fixing product name/version
...
The "fixed_in" field needs a version to populate the feed correctly, and since it's Gecko-based we've been lumping the Android advisories into regular Firefox ones.
2020-10-21 15:04:03 -07:00
bff441afdf
Thunderbird 78.4 Advisories
2020-10-21 14:34:42 -04:00
b5e374437f
Advisories for 82/78.4
2020-10-19 07:48:42 -04:00
23d88cc637
Thunderbird 78.3 advisories
2020-09-21 07:46:07 -05:00
d99f3187ef
Add Advisories 81 and 78.3
2020-09-21 07:43:17 -05:00
fa32b6805a
Add Fenix Advisories for 80
2020-09-02 21:00:28 -04:00
3639d74e7f
Backing out one patch from 80
2020-09-01 12:23:39 -05:00
3f29570694
Add Thunderbird Advisories for 68.12 and 78.2
2020-08-26 19:32:56 +00:00
b80ba6be2b
Add Advisories for Firefox 80 Desktop
2020-08-24 12:04:45 -05:00
15488d234d
Adding missing reporter on previously reported bug, where we accidentally fixed the duplicate
2020-08-06 09:09:51 +02:00
abb866d5c0
Add Thunderbird 68.11 advisories and correct a few things in FF 68.11
2020-07-30 10:10:06 -05:00
285985c3b7
Add missing Fennec advisories for ESR 68.11 release ( #17 )
2020-07-29 08:57:11 +02:00
e58a4bba81
Advisories for iOS Release 28
2020-07-28 17:17:58 -04:00
da095c80ac
Aligning CVE ids / feed false for webrtc issue (fx79 and related releases ( #16 )
2020-07-28 12:26:14 +02:00
89f79fd863
do not include webrtc cve in feed ( #15 )
2020-07-28 12:22:32 +02:00
d42b5a60c2
draft advisories for thunderbird 78.1 ( #13 )
2020-07-28 08:59:04 +02:00
c5eb895901
add missing cve for webrtc issue (fx 79, esr 78.1) ( #14 )
2020-07-28 08:58:42 +02:00
96cb63486f
adjust tense and wording for dll hijacking bug ( #12 )
2020-07-27 15:16:00 +02:00
a1bfff14e8
Advisories for Firefox 79, ESR 78.1 and ESR 68.11 ( #11 )
...
Advisories for Firefox 79, ESR 78.1 and ESR 68.11
The WebRTC issue is still missing a CVE identifier, but we can go live without it and add after the fact.
2020-07-27 12:55:38 +02:00
ee442f7afa
Add advisories for Thunderbird 78
2020-07-16 10:29:23 -05:00
3114d01de2
We have a CVE pool now, assign these back CVEs.
2020-07-16 10:29:23 -05:00
73ce7cdce5
Correct typo-ed overall severity in 78.0.2 advisory
2020-07-09 08:50:45 -05:00
e5ce6bca27
Add advisory for 78.0.2
2020-07-09 15:22:30 +02:00
9bc5cc5290
Add Fennec 68.10.1
2020-07-06 12:28:59 -05:00
2ba35590d0
Add Thunderbird 68.10 advisories
2020-07-02 18:49:17 +00:00
878ff14324
Advisories for 78
2020-07-01 17:18:55 +02:00
2c4bc6b81a
Fix typo in mfsa2020-22
2020-06-30 14:31:19 +02:00
7babee971c
Advisories for iOS Release v27.0
2020-06-25 20:39:25 +00:00
180bb06d40
Add a old/new advisory for Firefox 70
2020-06-16 18:14:10 +00:00
f4c3e36827
advisories for thunderbird 68.9.0
2020-06-04 11:18:30 +02:00
aed88c2ec4
Too many spaces
...
Too many spaces in front of CVE...
put different CVEs with the same issue betwee the two releases, and made several issues disappear.
2020-06-02 12:17:21 -07:00
5f4f85ff7f
advisories for Firefox 77 and ESR 68.9
2020-06-02 12:58:22 +02:00
5cc31f0dcd
Advisories for iOS Release 26.0
2020-05-29 10:06:07 -07:00
a7d4ea6317
Thunderbird 68.6 advisories
2020-05-05 16:28:57 -07:00
fff535792c
Fix syntax in Firefox ESR 68.8 advisory
2020-05-05 15:14:31 +02:00
9c3d37b7a9
advisories for Firefox 76 and ESR 68.8
2020-05-05 09:20:58 +02:00
c106fa327d
Advisories for iOS Release 25 ( #4 )
...
* Advisories for iOS Release 25
* Address nits
* Add announced date
2020-05-01 12:35:35 -07:00
5f4bdaef8e
Add Thunderbird 68.7.0 advisories
2020-04-11 12:21:51 +02:00
52ed5823f9
Add advisories for 75/68.7
2020-04-05 21:06:58 -05:00
c4f6a540e9
Add CVE IDs for mfsa2020-11
2020-04-03 18:55:44 +02:00
64cec8a6e5
Advisories for Firefox 74.0.1 and Firefox 68.6.1
2020-04-03 18:55:44 +02:00
c4dc30bd6d
Add Thunderbird advisories for 68.6, copied from FF 68.6
2020-03-12 11:05:16 -05:00
0b59b035e5
typo fix
2020-03-10 15:39:29 +01:00
deb0db18cf
Fix yaml for Firefox 68.5 and 68.6 advisories so they show up in the index
2020-03-10 15:24:29 +01:00
858ccec2c1
fix yaml format error
2020-03-10 14:22:31 +01:00
1f40cb752f
typo fix
2020-03-10 13:52:45 +01:00
8d9ff7bfa0
Add advisories for 74 and 68.6
2020-03-09 20:39:04 +01:00
e4a38444eb
Fix bug reference in advisory (wrong ID)
2020-02-27 12:19:18 +01:00
197cc8fdb3
Update Thunderbird advisory
2020-02-10 15:09:09 -06:00
82d902d64c
Add Thunderbird 68.5 and correct the date in the Firefox advisories
2020-02-10 14:42:39 -06:00
c3631c246f
Add Advisories for 73 and 68.5
2020-02-10 10:29:16 -06:00
cbed7b251b
Merge pull request #40 from tomrittervg/patch-1
...
Correct Reporter's Name
2020-01-10 11:45:04 -05:00
3434139b3b
Add Thunderbird 68.4.1
2020-01-10 09:47:52 -06:00
0f56aef26c
Correct Reporter's Name
2020-01-09 15:56:44 +00:00
11d72fd62b
Remove <code> tags from 72.0.1 advisory title
2020-01-08 18:40:35 +01:00
a8afbd74a8
Advisory for 72.0.1
2020-01-08 17:33:15 +01:00
78644d6132
Add advisories for 72
2020-01-06 15:53:11 -06:00
8fc00de42a
Add Thunderbird 68.3 advisory, and correct a couple of issues to note they only occur on Windows.
2019-12-04 20:13:59 +01:00
c03eee5f5f
fix yaml syntax issue that causes bedrock to not pick up the changes (and remove trailing spaces)
2019-12-03 15:53:02 +01:00
5bb7361f89
mfsa2019-37 is for Firefox ESR
2019-12-03 15:21:19 +01:00
3a94d0d438
Add advisories for 71/68.3
2019-12-02 20:25:46 +01:00
46991c89a2
Thunderbird 68.2 advisories
2019-10-24 10:17:49 +02:00
2d5a48d963
Add missing CVE id for bug 1561056
2019-10-22 14:44:21 +02:00
174cb4132c
Advisories for Firefox 70 and ESR68.2
2019-10-22 14:36:36 +02:00
45d988cd2e
Thunderbird 68.1.1 advisory
2019-09-26 09:46:31 -07:00
52a5884e24
Firefox 69.0.1 advisory
2019-09-18 10:13:43 -04:00
eea02021a8
Thunderbird 60.9 and 68.1 advisories
2019-09-13 09:28:26 -07:00
aef6169a90
Thunderbird 68 advisories
2019-09-10 16:47:43 -07:00
11c8051526
Fixing overall rating for MFSA2019-27
2019-09-10 10:57:40 -07:00
0ad5ab1b12
Adding bug 1400563 to the roll up.
2019-09-04 17:34:31 -07:00
3119852d7a
Firefox 69, 68.1 and 60.9 advisories
2019-09-03 13:20:25 +02:00
e98fe2fbbc
Update mfsa2019-24.yml
2019-08-19 09:53:11 -07:00
7a14466566
Firefox 68.0.2 advisory
2019-08-13 19:42:33 +02:00
d0ed929e60
Thunderbird 60.8 advisories
2019-07-11 19:07:12 -07:00
96da076272
Changing overall advisory doc rating
2019-07-09 08:37:20 -07:00
07bd38b544
Firefox ESR 60.8 advisories
2019-07-09 08:34:49 -07:00
a506db49c8
Firefox 68 advisories
2019-07-09 08:18:28 -07:00
9e6f800bf1
Thunderbird advisory for chemspill releases
...
Thunderbird advisory for chemspill release
2019-06-20 15:03:23 -07:00
9683d791e0
67.0.4/ESR-60.7.2 advisory
...
Sandbox escape advisory for chemspill
2019-06-20 09:07:33 -07:00
3c7c41524f
typo fixes
2019-06-18 10:02:40 -07:00
0bec3c62f7
Advisory for 67.0.3
...
Chemspill bug advisory
2019-06-18 09:14:32 -07:00
2b9c6109e7
Fixing overall rating of TB advisory
2019-06-13 16:54:24 -07:00
806f59e411
Fixing header issue in TB advisories
2019-06-13 15:24:17 -07:00
f64d9523ff
Thunderbird 60.7.1 advisories
2019-06-13 15:22:49 -07:00
6179b69234
missing asterix in 2019-16
2019-06-11 15:43:22 -07:00
e7dc299f7f
Firefox 67.0.2 advisory
2019-06-11 11:34:34 -07:00
3a9746cbad
Missed one fixup yesterday
2019-05-23 13:35:46 -07:00
5f43826b94
Attribution change for CVE-2019-7317
2019-05-22 14:02:56 -07:00
30de53fe17
Removing note.
2019-05-22 00:03:24 -07:00
dae43eec5c
Thunderbird 60.7 security advisories
2019-05-21 14:34:56 -07:00
567b1ff86a
Adding more ESR 60.7 specific items
2019-05-21 10:48:23 -07:00
493ef752a0
Extra character typo
2019-05-21 08:58:42 -07:00
365f7a4675
Firefox ESR 60.7 security advisories
2019-05-21 08:56:39 -07:00
5f267aab53
Firefox 67 security advisories
2019-05-21 08:49:18 -07:00
8c7f0b2ebe
Adding an older bug to Firefox 60 advisory.
2019-04-11 13:58:12 -07:00
884b002851
Fixing typo of bug number in 2018-05
2019-04-10 16:00:48 -07:00
7297677cb8
Thunderbird advisories for 60.6 and 60.6.1
2019-03-25 15:41:06 -07:00
Daniel Veditz
Tom Ritter
Frederik Braun
Julien Cristau
Pascal Chevrel
Daniela Arcese
Paul McLanahan
Ryan VanderMeulen
Jonathan Claudius
Garvan Keeley
Jens Hausdorf
Al
Ryan VanderMeulen
Daniel Veditz