rpm/MozillaThunderbird
SHA256
1
0
Fork 0
forked from pool/MozillaThunderbird
Code Pull Requests Activity
ed5ea29202
MozillaThunderbird/thunderbird-91.5.0.source.tar.xz.asc
Wolfgang Rosenauer ed5ea29202 - Mozilla Thunderbird 91.5.0 
https://www.thunderbird.net/en-US/thunderbird/91.5.0/releasenotes
  MFSA 2022-03 (bsc#1194547)
  * CVE-2022-22746 (bmo#1735071)
    Calling into reportValidity could have lead to fullscreen
    window spoof
  * CVE-2022-22743 (bmo#1739220)
    Browser window spoof using fullscreen mode
  * CVE-2022-22742 (bmo#1739923)
    Out-of-bounds memory access when inserting text in edit mode
  * CVE-2022-22741 (bmo#1740389)
    Browser window spoof using fullscreen mode
  * CVE-2022-22740 (bmo#1742334)
    Use-after-free of ChannelEventQueue::mOwner
  * CVE-2022-22738 (bmo#1742382)
    Heap-buffer-overflow in blendGaussianBlur
  * CVE-2022-22737 (bmo#1745874)
    Race condition when playing audio files
  * CVE-2021-4140 (bmo#1746720)
    Iframe sandbox bypass with XSLT
  * CVE-2022-22748 (bmo#1705211)
    Spoofed origin on external protocol launch dialog
  * CVE-2022-22745 (bmo#1735856)
    Leaking cross-origin URLs through securitypolicyviolation event
  * CVE-2022-22744 (bmo#1737252)
    The 'Copy as curl' feature in DevTools did not fully escape
    website-controlled data, potentially leading to command injection
  * CVE-2022-22747 (bmo#1735028)
    Crash when handling empty pkcs7 sequence
  * CVE-2022-22739 (bmo#1744158)

OBS-URL: https://build.opensuse.org/package/show/mozilla:Factory/MozillaThunderbird?expand=0&rev=620
2022-01-11 22:11:21 +00:00

17 lines
833 B
Plaintext
Raw Blame History

-----BEGIN PGP SIGNATURE-----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=lgac
-----END PGP SIGNATURE-----
View Git Blame Copy Permalink