mozilla
/
foundation-security-advisories
зеркало из https://github.com/mozilla/foundation-security-advisories.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
901 коммит 28 Ветки 0 Теги 4,1 MiB
Граф коммитов

901 Коммитов

Автор SHA1 Сообщение Дата
Tom Ritter 21706de52d Add a link to the Sandbox Escape 2024-11-18 13:21:06 -05:00
Tom Ritter e7e909d85d Remove an entry from the HOF 2024-11-14 12:20:02 -05:00
Tom Ritter 9769b062ea Add Thunderbird dot releases 2024-11-13 08:41:39 -05:00
Tom Ritter b9f0167cf9 Add a DOS bug to the advisory 2024-11-06 15:04:54 -05:00
Tom Ritter 995ad26e19 Small fixes 2024-11-01 09:04:21 -04:00
Frederik Braun 04c682acf5 2024 Q3 additions to the client bug bounty hall of fame 2024-11-01 09:04:21 -04:00
Frederik Braun bf40defb3e additional credit info for 2024 Q3 participants 2024-11-01 09:04:21 -04:00
Frederik Braun a9609ebcbc adjust client product to include webcompat shims 2024-11-01 09:04:21 -04:00
Steve Jalim 4146877f14 Fix broken Twitter references in HoF 2024-10-31 11:55:37 -04:00
Tom Ritter 62877d6f84 Add 2024 Q2 2024-10-31 08:40:56 -04:00
Tom Ritter dfd27935a3 Q1 2024 hof 2024-10-31 08:40:56 -04:00
Tom Ritter 07f699668c Q1 2024 names 2024-10-31 08:40:56 -04:00
Tom Ritter a24432db4b Q4 2023 HOF 2024-10-31 08:40:56 -04:00
Tom Ritter e447f70092 Q4 2023 names 2024-10-31 08:40:56 -04:00
Tom Ritter dbb88a29ae Q3 2023 hof 2024-10-31 08:40:56 -04:00
Tom Ritter 6ac7de7686 Q3 2023 names 2024-10-31 08:40:56 -04:00
Tom Ritter b1f8becefe Q2 2023 HOF 2024-10-31 08:40:56 -04:00
Tom Ritter 8943aed9e8 Q2 2023 names 2024-10-31 08:40:56 -04:00
Tom Ritter 716384cbc2 Q1 2023 names 2024-10-31 08:40:56 -04:00
Tom Ritter c7e3466b0c Script fixes 2024-10-31 08:40:56 -04:00
mattreaganmozilla 5a8bb03a22 Security advisories for Firefox Focus for iOS v132 
* Security advisories for Firefox Focus v132

* Moderate impact

* Attempt to fix error in YML
 2024-10-29 07:47:01 -04:00
Ryan VanderMeulen 8994162a9e Advisories for Firefox & Thunderbird 132, ESR 128.4, ESR 115.17 
* Add Advisories for 132

* Add CVEs

* Add advisories for Thunderbird 132

---------

Co-authored-by: Tom Ritter <tom@ritter.vg>
 2024-10-29 07:46:57 -04:00
Matt Reagan 9efc6eb152 Fix file number reference in yml header 2024-10-15 13:49:34 -07:00
Matt Reagan 3c0c2e07c7 Add security advisories for Firefox iOS for v131.2 2024-10-15 13:48:01 -07:00
Tom Ritter 115253da16 Add advisories for 131.0.3 2024-10-14 09:40:38 -04:00
Jesse Schwartzentruber c07b4d7072 Advisories for Thunderbird 131.0.1, 128.3.1, 115.16.0 2024-10-11 09:11:51 +02:00
Frederik Braun bc9537dc27 Advisories for Firefox 131.0.2, ESR 128.3.1 and ESR 115.16.1 2024-10-09 08:30:26 +02:00
Daniel Veditz 847950f30a Adding original reporters for CVE-2024-9392 2024-10-01 09:54:42 -07:00
pyoor 08264764ab Add advisories for 131 release 2024-10-01 11:11:53 -04:00
Simon Friedberger 35664fc79e
Merge remote-tracking branch 'public/master' 2024-10-01 16:46:13 +02:00
Tom Ritter 97beafb67b Add a missing advisory to Firefox 129 2024-09-17 14:13:46 -04:00
pyoor b8ceb788bb Firefox 130.0.1 advisories 2024-09-17 09:06:55 +02:00
Malte Juergens 5f32fc6da8 Keep unknown keys from remote in containers section 
Fixes #141
 2024-09-16 13:32:23 -04:00
Daniel Veditz 65f7fae8a1 Merge branch 'master' of https://github.com/mozilla/foundation-security-advisories-private 2024-09-16 08:37:42 -07:00
Frederik Braun 6a0b0cacb5 fix name for CVE-2024-7652 2024-09-12 14:07:16 +02:00
Daniel Veditz e68d94124e fix bad quoting in CVE-2024-8381 title 2024-09-06 11:28:33 -07:00
Daniel Veditz b2ecb9c903 remove Firefox-only CVE-2024-8383 
Thunderbird handle's news: and snews: URLs internally; this problem couldn't happen there
 2024-09-06 11:23:49 -07:00
Tom Ritter 91adafacf0 Update 128-related advisories to include CVE-2024-7652 2024-09-06 14:17:26 -04:00
Daniel Veditz b75a0fc811 Merge branch 'master' of https://github.com/mozilla/foundation-security-advisories-private 2024-09-06 11:15:33 -07:00
Tom Ritter a6bcdbdbab Add missing OTR CVE 2024-09-06 12:15:33 -04:00
Tom Ritter 1c7adcc6be Add Thunderbird Advisories 2024-09-06 12:11:55 -04:00
Daniel Veditz d32187108b correct misspelling of reporter's name 2024-09-03 17:26:20 -07:00
Daniel Veditz 319baae496 Fix missing period in CVE-2024-8383 description 2024-09-03 14:21:51 -07:00
Matt Reagan e9c4f8faf9 Security advisories for Focus iOS v130 2024-09-03 22:06:13 +02:00
Daniel Veditz 2d8da0ae3b assign CVEs 2024-09-03 10:10:15 +02:00
Daniel Veditz 2e7baff224 Draft advisories for 130, 128.2, and 115.15 2024-09-03 10:10:00 +02:00
Daniel Veditz b5755044b5
merge from Adv 129 to master (#79) 
* Advisories for Firefox 129, ESR 115.14, ESR 128.1

* Minor edits before the 129 releases

* Assigning CVEs for the 129/128.1/115.14 release

* Security advisories for iOS v129 (#78)

* Thunderbird 128.1/115.14 advisories

---------

Co-authored-by: Tyson Smith <tyson.w.smith@gmail.com>
Co-authored-by: mattreaganmozilla <145381717+mattreaganmozilla@users.noreply.github.com>
 2024-09-01 19:56:29 -07:00
Daniel Veditz c0d3ed8cba Thunderbrid 128.1/115.14 advisories 2024-08-06 15:20:32 -07:00
mattreaganmozilla b9485147af Security advisories for iOS v129 (#78) 2024-08-06 11:53:57 -04:00
Tyson Smith f58432f903 Advisories for Firefox 129, ESR 115.14, ESR 128.1 
* Advisories for Firefox 129, ESR 115.14, ESR 128.1
* Minor edits before the 129 releases
* Assigning CVEs for the 129/128.1/115.14 release
 2024-08-06 08:17:49 -04:00