Package thunderbird: Information

    Binary package: thunderbird
    Version: 60.8.0-alt0.M70C.1
    Architecture: i586
    Build time:  Jul 31, 2019, 02:59 PM in the task #234994
    Source package: thunderbird
    Category: Networking/Mail
    Report package bug
    Gear: https://git.altlinux.org/gears/t/thunderbird.git?a=tree;hb=17434…
    Download: thunderbird-60.8.0-alt0.M70C.1.i586.rpm
    Build log: https://git.altlinux.org/tasks/234994/build/400/i586/log
    Home page: https://www.thunderbird.net
    License: MPL/GPL
    Summary: Thunderbird is Mozilla's e-mail client
    Description: 
    Thunderbird is Mozilla's next generation e-mail client.
Thunderbird makes emailing safer, faster and easier than
ever before and can also scale to meet the most sophisticated
organizational needs.
The package contains Lightning - an integrated calendar for Thunderbird.
    Maintainer: Andrey Cherepanov
    List of contributors:
    Andrey Cherepanov
    Gleb Fotengauer-Malinovskiy
    Paul Wolneykien
    Anton Farygin
    Vladimir Didenko
    Alexey Gladkov
    Anton V. Boyarshinov
    Alexey Morozov

    Last changed

    July 13, 2019 Andrey Cherepanov 60.8.0-alt0.M70C.1
    - Backport new version with security fixes to c7 branch.
    July 10, 2019 Andrey Cherepanov 60.8.0-alt1
    - New version (60.8.0).
- Fixed:
  + CVE-2019-9811 Sandbox escape via installation of malicious language pack
  + CVE-2019-11711 Script injection within domain through inner window reuse
  + CVE-2019-11712 Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects
  + CVE-2019-11713 Use-after-free with HTTP/2 cached stream
  + CVE-2019-11729 Empty or malformed p256-ECDH public keys may trigger a segmentation fault
  + CVE-2019-11715 HTML parsing error can contribute to content XSS
  + CVE-2019-11717 Caret character improperly escaped in origins
  + CVE-2019-11719 Out-of-bounds read when importing curve25519 private key
  + CVE-2019-11730 Same-origin policy treats all files in a directory as having the same-origin
  + CVE-2019-11709 Memory safety bugs fixed in Firefox 68, Firefox ESR 60.8, and Thunderbird 60.8
- Enigmail 2.0.12.
    July 3, 2019 Gleb Fotengauer-Malinovskiy 60.7.2-alt2
    - Added ppc64le support.
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.4.2
    Back to top