svn commit: r383181 - head/security/vuxml
Jan Beich
jbeich at FreeBSD.org
Fri Apr 3 23:42:56 UTC 2015
Author: jbeich
Date: Fri Apr 3 23:42:55 2015
New Revision: 383181
URL: https://svnweb.freebsd.org/changeset/ports/383181
Log:
Document mozilla vulnerabilities in Firefox 37.0
Modified:
head/security/vuxml/vuln.xml
Modified: head/security/vuxml/vuln.xml
==============================================================================
--- head/security/vuxml/vuln.xml Fri Apr 3 22:39:37 2015 (r383180)
+++ head/security/vuxml/vuln.xml Fri Apr 3 23:42:55 2015 (r383181)
@@ -57,6 +57,42 @@ Notes:
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="b8321d76-24e7-4b72-a01d-d12c4445d826">
+ <topic>mozilla -- multiple vulnerabilities</topic>
+ <affects>
+ <package>
+ <name>firefox</name>
+ <range><lt>37.0.1,1</lt></range>
+ </package>
+ <package>
+ <name>linux-firefox</name>
+ <range><lt>37.0.1,1</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>The Mozilla Project reports:</p>
+ <blockquote cite="https://www.mozilla.org/en-US/security/known-vulnerabilities/">
+ <p>MFSA 2015-44 Certificate verification bypass through the
+ HTTP/2 Alt-Svc header</p>
+ <p>MFSA 2015-43 Loading privileged content through Reader
+ mode</p>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <cvename>CVE-2015-0798</cvename>
+ <cvename>CVE-2015-0799</cvename>
+ <url>https://www.mozilla.org/security/advisories/mfsa2015-43/</url>
+ <url>https://www.mozilla.org/security/advisories/mfsa2015-44/</url>
+ <url>https://www.mozilla.org/security/advisories/</url>
+ </references>
+ <dates>
+ <discovery>2015-04-03</discovery>
+ <entry>2015-04-04</entry>
+ </dates>
+ </vuln>
+
<vuln vid="2f75141c-da1d-11e4-8d32-5404a68ad561">
<topic>Several vulnerabilities in libav</topic>
<affects>
More information about the svn-ports-head
mailing list