Date: Fri, 30 Aug 2024 10:11:01 GMT From: Fernando =?utf-8?Q?Apestegu=C3=ADa?= <fernape@FreeBSD.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: git: b823d9ff184b - main - security/vuxml: Revert "Record firefox multiple vulnerabilites" Message-ID: <202408301011.47UAB1Km029925@gitrepo.freebsd.org>
index | next in thread | raw e-mail
The branch main has been updated by fernape: URL: https://cgit.FreeBSD.org/ports/commit/?id=b823d9ff184bacc1192dbb5053d6a0f15d82d8e4 commit b823d9ff184bacc1192dbb5053d6a0f15d82d8e4 Author: Fernando ApesteguĂa <fernape@FreeBSD.org> AuthorDate: 2024-08-30 10:09:55 +0000 Commit: Fernando ApesteguĂa <fernape@FreeBSD.org> CommitDate: 2024-08-30 10:09:55 +0000 security/vuxml: Revert "Record firefox multiple vulnerabilites" This reverts commit 4453cf7eef05f9ac2b27bda7a87afb7da713f1c4. The 3 CVEs only apply to firefox on iOS. Reported by: ronald-lists@klop.ws --- security/vuxml/vuln/2024.xml | 39 --------------------------------------- 1 file changed, 39 deletions(-) diff --git a/security/vuxml/vuln/2024.xml b/security/vuxml/vuln/2024.xml index e9606c88bfca..7dd64a18968f 100644 --- a/security/vuxml/vuln/2024.xml +++ b/security/vuxml/vuln/2024.xml @@ -1,42 +1,3 @@ - <vuln vid="44de1b82-662d-11ef-a51b-b42e991fc52e"> - <topic>firefox -- multiple vulnerabilities</topic> - <affects> - <package> - <name>firefox</name> - <range><lt>129</lt></range> - </package> - </affects> - <description> - <body xmlns="http://www.w3.org/1999/xhtml">; - <p>security@mozilla.org reports:</p> - <blockquote cite="https://bugzilla.mozilla.org/show_bug.cgi?id=1874964">; - <p>This update includes 3 CVEs:</p> - <ul> - <li>The contextual menu for links could provide an - opportunity for cross-site scripting attacks.</li> - <li>Long pressing on a download link could potentially - provide a means for cross-site scripting.</li> - <li>Long pressing on a download link could potentially - allow Javascript commands to be executed within the - browser.</li> - </ul> - </blockquote> - </body> - </description> - <references> - <cvename>CVE-2024-43113</cvename> - <url>https://nvd.nist.gov/vuln/detail/CVE-2024-43113</url>; - <cvename>CVE-2024-43112</cvename> - <url>https://nvd.nist.gov/vuln/detail/CVE-2024-43112</url>; - <cvename>CVE-2024-43111</cvename> - <url>https://nvd.nist.gov/vuln/detail/CVE-2024-43111</url>; - </references> - <dates> - <discovery>2024-08-06</discovery> - <entry>2024-08-29</entry> - </dates> - </vuln> - <vuln vid="6f2545bb-65e8-11ef-8a0f-a8a1599412c6"> <topic>chromium -- multiple security fixes</topic> <affects>home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202408301011.47UAB1Km029925>