Пакет thunderbird: Информация
Default inline alert: Версия в репозитории: 115.9.0-alt1
Бинарный пакет: thunderbird
Версия: 102.6.0-alt1
Архитектура: x86_64
Собран: 23 декабря 2022 г. 15:11 в задании #311857
Исходный пакет: thunderbird
Категория: Сети/Почта
Сообщить об ошибке в пакетеЗагрузка: thunderbird-102.6.0-alt1.x86_64.rpm
Домашняя страница: https://www.thunderbird.net
Лицензия: MPL-2.0
О пакете: Thunderbird is Mozilla's e-mail client
Описание:
Thunderbird is Mozilla's next generation e-mail client. Thunderbird makes emailing safer, faster and easier than ever before and can also scale to meet the most sophisticated organizational needs. The package contains Lightning - an integrated calendar for Thunderbird.
Сопровождающий: Andrey Cherepanov
Список участников:
Pavel Vasenkov
Andrey Cherepanov
Aleksei Nikiforov
Gleb Fotengauer-Malinovskiy
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov
Pavel Vasenkov
Andrey Cherepanov
Aleksei Nikiforov
Gleb Fotengauer-Malinovskiy
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov
Последнее изменение
16 декабря 2022 г. Pavel Vasenkov 102.6.0-alt1
- New version. - Security fixes: + CVE-2022-46880 Use-after-free in WebGL + CVE-2022-46872 Arbitrary file read from a compromised content process + CVE-2022-46881 Memory corruption in WebGL + CVE-2022-46874 Drag and Dropped Filenames could have been truncated to malicious extensions + CVE-2022-46875 Download Protections were bypassed by .atloc and .ftploc files on Mac OS + CVE-2022-46882 Use-after-free in WebGL + CVE-2022-46878 Memory safety bugs fixed in Thunderbird 102.6
5 декабря 2022 г. Pavel Vasenkov 102.5.1-alt1
- New version. - Security fixes: + CVE-2022-45414 Quoting from an HTML email with certain tags will trigger network requests and load remote content, regardless of a configuration
16 ноября 2022 г. Pavel Vasenkov 102.5.0-alt1
- New version. - Security fixes: + CVE-2022-45403 Service Workers might have learned size of cross-origin media files + CVE-2022-45404 Fullscreen notification bypass + CVE-2022-45405 Use-after-free in InputStream implementation + CVE-2022-45406 Use-after-free of a JavaScript Realm + CVE-2022-45408 Fullscreen notification bypass via windowName + CVE-2022-45409 Use-after-free in Garbage Collection + CVE-2022-45410 ServiceWorker-intercepted requests bypassed SameSite cookie policy + CVE-2022-45411 Cross-Site Tracing was possible via non-standard override headers + CVE-2022-45412 Symlinks may resolve to partially uninitialized buffers + CVE-2022-45416 Keystroke Side-Channel Leakage + CVE-2022-45418 Custom mouse cursor could have been drawn over browser UI + CVE-2022-45420 Iframe contents could be rendered outside the iframe + CVE-2022-45421 Memory safety bugs fixed in Thunderbird 102.5