rpm/MozillaThunderbird
SHA256
1
0
Fork 0
forked from pool/MozillaThunderbird
Code Pull Requests Activity
d0799f3ab3
MozillaThunderbird/thunderbird-102.5.0.source.tar.xz.asc
Wolfgang Rosenauer d0799f3ab3 - Mozilla Thunderbird 102.5.0 
* changes and fixes as described here
    https://www.thunderbird.net/en-US/thunderbird/102.5.0/releasenotes
  MFSA 2022-49 (bsc#1205270)
  * CVE-2022-45403 (bmo#1762078)
    Service Workers might have learned size of cross-origin media files
  * CVE-2022-45404 (bmo#1790815)
    Fullscreen notification bypass
  * CVE-2022-45405 (bmo#1791314)
    Use-after-free in InputStream implementation
  * CVE-2022-45406 (bmo#1791975)
    Use-after-free of a JavaScript Realm
  * CVE-2022-45408 (bmo#1793829)
    Fullscreen notification bypass via windowName
  * CVE-2022-45409 (bmo#1796901)
    Use-after-free in Garbage Collection
  * CVE-2022-45410 (bmo#1658869)
    ServiceWorker-intercepted requests bypassed SameSite cookie policy
  * CVE-2022-45411 (bmo#1790311)
    Cross-Site Tracing was possible via non-standard override headers
  * CVE-2022-45412 (bmo#1791029)
    Symlinks may resolve to partially uninitialized buffers
  * CVE-2022-45416 (bmo#1793676)
    Keystroke Side-Channel Leakage
  * CVE-2022-45418 (bmo#1795815)
    Custom mouse cursor could have been drawn over browser UI
  * CVE-2022-45420 (bmo#1792643)
    Iframe contents could be rendered outside the iframe
  * CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061)
    Memory safety bugs fixed in Thunderbird 102.5

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaThunderbird?expand=0&rev=676
2022-11-16 13:42:05 +00:00

17 lines
833 B
Plaintext
Raw Blame History

-----BEGIN PGP SIGNATURE-----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=WxnT
-----END PGP SIGNATURE-----
View Git Blame Copy Permalink