git: b823d9ff184b - main - security/vuxml: Revert "Record firefox multiple vulnerabilites"

Go to: [ bottom of page ] [ top of archives ] [ this month ]
From: Fernando Apesteguía <fernape_at_FreeBSD.org>
Date: Fri, 30 Aug 2024 10:11:01 UTC
The branch main has been updated by fernape:

URL: https://cgit.FreeBSD.org/ports/commit/?id=b823d9ff184bacc1192dbb5053d6a0f15d82d8e4

commit b823d9ff184bacc1192dbb5053d6a0f15d82d8e4
Author:     Fernando Apesteguía <fernape@FreeBSD.org>
AuthorDate: 2024-08-30 10:09:55 +0000
Commit:     Fernando Apesteguía <fernape@FreeBSD.org>
CommitDate: 2024-08-30 10:09:55 +0000

    security/vuxml: Revert "Record firefox multiple vulnerabilites"
    
    This reverts commit 4453cf7eef05f9ac2b27bda7a87afb7da713f1c4.
    
    The 3 CVEs only apply to firefox on iOS.
    
    Reported by:    ronald-lists@klop.ws
---
 security/vuxml/vuln/2024.xml | 39 ---------------------------------------
 1 file changed, 39 deletions(-)

diff --git a/security/vuxml/vuln/2024.xml b/security/vuxml/vuln/2024.xml
index e9606c88bfca..7dd64a18968f 100644
--- a/security/vuxml/vuln/2024.xml
+++ b/security/vuxml/vuln/2024.xml
@@ -1,42 +1,3 @@
-  <vuln vid="44de1b82-662d-11ef-a51b-b42e991fc52e">
-    <topic>firefox -- multiple vulnerabilities</topic>
-    <affects>
-      <package>
-	<name>firefox</name>
-	<range><lt>129</lt></range>
-      </package>
-    </affects>
-    <description>
-	<body xmlns="http://www.w3.org/1999/xhtml">
-	<p>security@mozilla.org reports:</p>
-	<blockquote cite="https://bugzilla.mozilla.org/show_bug.cgi?id=1874964">
-	  <p>This update includes 3 CVEs:</p>
-	    <ul>
-	      <li>The contextual menu for links could provide an
-		opportunity for cross-site scripting attacks.</li>
-	      <li>Long pressing on a download link could potentially
-		provide a means for cross-site scripting.</li>
-	      <li>Long pressing on a download link could potentially
-		allow Javascript commands to be executed within the
-		browser.</li>
-	</ul>
-	</blockquote>
-	</body>
-    </description>
-    <references>
-      <cvename>CVE-2024-43113</cvename>
-      <url>https://nvd.nist.gov/vuln/detail/CVE-2024-43113</url>
-      <cvename>CVE-2024-43112</cvename>
-      <url>https://nvd.nist.gov/vuln/detail/CVE-2024-43112</url>
-      <cvename>CVE-2024-43111</cvename>
-      <url>https://nvd.nist.gov/vuln/detail/CVE-2024-43111</url>
-    </references>
-    <dates>
-      <discovery>2024-08-06</discovery>
-      <entry>2024-08-29</entry>
-    </dates>
-  </vuln>
-
   <vuln vid="6f2545bb-65e8-11ef-8a0f-a8a1599412c6">
     <topic>chromium -- multiple security fixes</topic>
     <affects>