1
0

* CVE-2017-7846 (bmo#1411716, bsc#1074043)

* CVE-2017-7847 (bmo#1411708, bsc#1074044)
  * CVE-2017-7848 (bmo#1411699, bsc#1074045)
  * CVE-2017-7829 (bmo#1423432, bsc#1074046)

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaThunderbird?expand=0&rev=399
This commit is contained in:
Wolfgang Rosenauer 2018-02-16 09:09:25 +00:00 committed by Git OBS Bridge
parent f8a44525c7
commit 77c48f2707
2 changed files with 6 additions and 6 deletions

View File

@ -43,13 +43,13 @@ Sat Dec 23 18:36:42 UTC 2017 - wr@rosenauer.org
* CVE-2017-7845 (bmo#1402372)
Buffer overflow when drawing and validating elements with ANGLE
library using Direct 3D 9
* CVE-2017-7846 (bmo#1411716)
* CVE-2017-7846 (bmo#1411716, bsc#1074043)
JavaScript Execution via RSS in mailbox:// origin
* CVE-2017-7847 (bmo#1411708)
* CVE-2017-7847 (bmo#1411708, bsc#1074044)
Local path string can be leaked from RSS feed
* CVE-2017-7848 (bmo#1411699)
* CVE-2017-7848 (bmo#1411699, bsc#1074045)
RSS Feed vulnerable to new line Injection
* CVE-2017-7829 (bmo#1423432)
* CVE-2017-7829 (bmo#1423432, bsc#1074046)
Mailsploit part 1: From address with encoded null character is
cut off in message header display

View File

@ -2,10 +2,10 @@
<constraints>
<hardware>
<disk>
<size unit="G">13</size>
<size unit="G">16</size>
</disk>
<memory>
<size unit="M">6000</size>
<size unit="M">9000</size>
</memory>
</hardware>
</constraints>