Package thunderbird-devel: Information
Binary package: thunderbird-devel
Version: 52.9.0-alt0.M80P.1
Architecture: i586
Build time: Jul 6, 2018, 07:40 PM in the task #209501
Source package: thunderbird
Category: Development/C++
Report package bugHome page: https://www.thunderbird.net
License: MPL/GPL
Summary: Thunderbird development kit.
Description:
Thunderbird development kit.
Maintainer: Andrey Cherepanov
Last changed
July 4, 2018 Andrey Cherepanov 52.9.0-alt0.M80P.1
- Backport new version to p8 branch.
July 4, 2018 Andrey Cherepanov 52.9.0-alt1
- New version (52.9.0). - Enigmail 2.0.7. - Fixes: + CVE-2018-12359 Buffer overflow using computed size of canvas element + CVE-2018-12360 Use-after-free when using focus() + CVE-2018-12372 S/MIME and PGP decryption oracles can be built with HTML emails + CVE-2018-12373 S/MIME plaintext can be leaked through HTML reply/forward + CVE-2018-12362 Integer overflow in SSSE3 scaler + CVE-2018-12363 Use-after-free when appending DOM nodes + CVE-2018-12364 CSRF attacks through 307 redirects and NPAPI plugins + CVE-2018-12365 Compromised IPC child process can list local filenames + CVE-2018-12366 Invalid data handling during QCMS transformations + CVE-2018-12368 No warning when opening executable SettingContent-ms files + CVE-2018-12374 Using form to exfiltrate encrypted mail part by pressing enter in form field + CVE-2018-5188 Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1, Firefox ESR 52.9, and Thunderbird 52.9
May 19, 2018 Andrey Cherepanov 52.8.0-alt0.M80P.1
- Backport new version to p8 branch.