summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorCyril Brulebois <ckb@riseup.net>2019-12-03 15:08:20 +0100
committerCyril Brulebois <ckb@riseup.net>2019-12-03 15:08:20 +0100
commit5fab03a713ee2ed8d19923709d5d5b95355c3d72 (patch)
tree300ed905577b54178ff2cbc5c08e8f1c4dafad02
parentcc6cf74b2f0a341507a6f5d5d8154d467971a9d7 (diff)
Prepare the security advisory.
The MFSA references are speculative only at this point.
-rw-r--r--debian/changelog6
-rw-r--r--wiki/src/security/Numerous_security_holes_in_4.0.mdwn26
2 files changed, 30 insertions, 2 deletions
diff --git a/debian/changelog b/debian/changelog
index abd356e..f9e7048 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,8 +1,10 @@
tails (4.1) unstable; urgency=medium
* Major changes
- - Upgrade Tor Browser to 9.0.2-build2, based on Firefox ESR 68.3.
- - Upgrade Thunderbird to 68.2.2 (Closes: #16771, #17220, #17222, #17267).
+ - Upgrade Tor Browser to 9.0.2-build2, based on Firefox ESR 68.3
+ (MFSA-2019-37).
+ - Upgrade Thunderbird to 68.2.2 (Closes: #16771, #17220, #17222, #17267,
+ MFSA-2019-38).
- Upgrade Enigmail to 2:2.1.3+ds1-4~deb10u2 accordingly.
* Security fixes
diff --git a/wiki/src/security/Numerous_security_holes_in_4.0.mdwn b/wiki/src/security/Numerous_security_holes_in_4.0.mdwn
new file mode 100644
index 0000000..231a622
--- /dev/null
+++ b/wiki/src/security/Numerous_security_holes_in_4.0.mdwn
@@ -0,0 +1,26 @@
+[[!meta date="Sun, 01 Dec 2019 14:00:00 +0000"]]
+[[!meta title="Numerous security holes in Tails 4.0"]]
+
+[[!tag security/fixed]]
+
+[[Tails_4.1|news/version_4.1]] fixes many security issues that affect
+TailsĀ 4.0. You should [[upgrade to TailsĀ 4.1|news/version_4.1]] as
+soon as possible.
+
+ - Tor Browser: [[!mfsa 2019-37]] **CHECK**
+ - Thunderbird: [[!mfsa 2019-38]] **CHECK**
+ - Linux: to 5.3.9-2 from sid (Closes: #17124). **FIXME**
+ - file: [[!debsa2019 4550]]
+ - FriBidi: [[!debsa2019 4561]]
+ - Ghostscript: [[!debsa2019 4569]]
+ - Intel microcode: [[!debsa2019 4565]], [[!cve CVE-2019-0117]]
+ - libarchive: [[!debsa2019 4557]]
+ - libvpx: [[!debsa2019 4578]]
+ - libxslt: [[!cve CVE-2019-18197]]
+ - ncurses: [[!cve CVE-2019-17594]], [[!cve CVE-2019-17595]]
+ - Python 2.7: [[!cve CVE-2018-20852]], [[!cve CVE-2019-10160]],
+ [[!cve CVE-2019-16056]], [[!cve CVE-2019-16935]],
+ [[!cve CVE-2019-9740]], [[!cve CVE-2019-9947]]
+ - Qt: [[!debsa2019 4556]]
+ - tcpdump: [[!debsa2019 4547]]
+ - WebKitGTK: [[!debsa2019 4558]], [[!debsa2019 4563]]