Package rpm-build-thunderbird: Information

    Binary package: rpm-build-thunderbird
    Version: 102.11.0-alt0.c9.1
    Architecture: i586
    Build time:  Jun 13, 2023, 07:06 PM in the task #322486
    Source package: thunderbird
    Category: Development/Other
    Report package bug
    Gear: https://git.altlinux.org/gears/t/thunderbird.git?a=tree;hb=d3435…
    Download: rpm-build-thunderbird-102.11.0-alt0.c9.1.i586.rpm
    Build log: https://git.altlinux.org/tasks/322486/build/100/i586/log
    Home page: https://www.thunderbird.net
    License: MPL-2.0
    Summary: RPM helper macros to rebuild thunderbird packages
    Description: 
    These helper macros provide possibility to rebuild
thunderbird packages by some Alt Linux Team Policy compatible way.
    Maintainer: Andrey Cherepanov
    List of contributors:
    Pavel Vasenkov
    Andrey Cherepanov
    Aleksei Nikiforov
    Gleb Fotengauer-Malinovskiy
    Paul Wolneykien
    Anton Farygin
    Vladimir Didenko
    Alexey Gladkov
    Alexey Morozov

    Last changed

    June 5, 2023 Pavel Vasenkov 102.11.0-alt0.c9.1
    - Backport new version with security fixes to c9 branch.
    May 17, 2023 Pavel Vasenkov 102.11.0-alt1
    - New version.
- Security fixes:
  + CVE-2023-32205 Browser prompts could have been obscured by popups
  + CVE-2023-32206 Crash in RLBox Expat driver
  + CVE-2023-32207 Potential permissions request bypass via clickjacking
  + CVE-2023-32211 Content process crash due to invalid wasm code
  + CVE-2023-32212 Potential spoof due to obscured address bar
  + CVE-2023-32213 Potential memory corruption in FileReader::DoReadData()
  + CVE-2023-32214 Potential DoS via exposed protocol handlers
  + CVE-2023-32215 Memory safety bugs fixed in Thunderbird 102.11
    April 19, 2023 Pavel Vasenkov 102.10.0-alt1
    - New version.
- Security fixes:
  + CVE-2023-29531 Out-of-bound memory access in WebGL on macOS
  + CVE-2023-29532 Mozilla Maintenance Service Write-lock bypass
  + CVE-2023-29533 Fullscreen notification obscured
  + CVE-2023-1999 Double-free in libwebp
  + CVE-2023-29535 Potential Memory Corruption following Garbage Collector compaction
  + CVE-2023-29536 Invalid free from JavaScript code
  + CVE-2023-0547 Revocation status of S/Mime recipient certificates was not checked
  + CVE-2023-29479 Hang when processing certain OpenPGP messages
  + CVE-2023-29539 Content-Disposition filename truncation leads to Reflected File Download
  + CVE-2023-29541 Files with malicious extensions could have been downloaded unsafely on Linux
  + CVE-2023-29542 Bypass of file download extension restrictions
  + CVE-2023-29545 Windows Save As dialog resolved environment variables
  + CVE-2023-1945 Memory Corruption in Safe Browsing Code
  + CVE-2023-29548 Incorrect optimization result on ARM64
  + CVE-2023-29550 Memory safety bugs fixed in Thunderbird 102.10
    VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
    Version: v24.4.2
    Back to top