Package thunderbird: Information

Binary package: thunderbird
Version: 91.10.0-alt0.p9.1
Architecture: aarch64
Build time:  Jun 15, 2022, 03:50 PM
 in the task #301653
Source package: thunderbird
Category: Networking/Mail
Report package bug
License: MPL-2.0 
Summary:  Thunderbird is Mozilla's e-mail client
Thunderbird is Mozilla's next generation e-mail client. Thunderbird makes
emailing safer, faster and easier than ever before and can also scale to meet
the most sophisticated organizational needs.

The package contains Lightning - an integrated calendar for Thunderbird.
Last changes:
June 9, 2022 Pavel Vasenkov 91.10.0-alt0.p9.1
- Backport new version to p9 branch.
June 3, 2022 Pavel Vasenkov 91.10.0-alt1
- New version.
- Security fixes:
  + CVE-2022-31736 Cross-Origin resource's length leaked
  + CVE-2022-31737 Heap buffer overflow in WebGL
  + CVE-2022-31738 Browser window spoof using fullscreen mode
  + CVE-2022-31739 Attacker-influenced path traversal when saving downloaded files
  + CVE-2022-31740 Register allocation problem in WASM on arm64
  + CVE-2022-31741 Uninitialized variable leads to invalid memory read
  + CVE-2022-1834 Braille space character caused incorrect sender email to be shown for a digitally signed email
  + CVE-2022-31742 Querying a WebAuthn token with a large number of allowCredential entries may have leaked cross-origin information
  + CVE-2022-31747 Memory safety bugs fixed in Thunderbird 91.10
May 21, 2022 Pavel Vasenkov 91.9.1-alt1
- New version.
- Security fixes:
  + CVE-2022-1802 Prototype pollution in Top-Level Await implementation
  + CVE-2022-1529 Untrusted input used in JavaScript object indexing, leading to prototype pollution
Back to Top