Пакет thunderbird-wayland: Информация

  • Default inline alert: Версия в репозитории: 115.9.0-alt1

Бинарный пакет: thunderbird-wayland
Версия: 91.5.0-alt1
Архитектура: aarch64
Собран:  12 января 2022 г. 17:35 в задании #293351
Исходный пакет: thunderbird
Категория: Сети/Почта
Сообщить об ошибке в пакете
Gear: https://git.altlinux.org/gears/t/thunderbird.git?a=tree;hb=88624…
Загрузка: thunderbird-wayland-91.5.0-alt1.aarch64.rpm
Лог сборки: https://git.altlinux.org/tasks/293351/build/200/aarch64/log
Домашняя страница: https://www.thunderbird.net
Лицензия: MPL-2.0
О пакете: Thunderbird Wayland launcher
Описание: 
The thunderbird-wayland package contains launcher and desktop file
to run Thunderbird natively on Wayland.
Сопровождающий: Andrey Cherepanov
Список участников:
Andrey Cherepanov
Aleksei Nikiforov
Gleb Fotengauer-Malinovskiy
Paul Wolneykien
Anton Farygin
Vladimir Didenko
Alexey Gladkov
Alexey Morozov

Последнее изменение

12 января 2022 г. Andrey Cherepanov 91.5.0-alt1
- New version.
- Security fixes:
  + CVE-2022-22746 Calling into reportValidity could have lead to fullscreen window spoof
  + CVE-2022-22743 Browser window spoof using fullscreen mode
  + CVE-2022-22742 Out-of-bounds memory access when inserting text in edit mode
  + CVE-2022-22741 Browser window spoof using fullscreen mode
  + CVE-2022-22740 Use-after-free of ChannelEventQueue::mOwner
  + CVE-2022-22738 Heap-buffer-overflow in blendGaussianBlur
  + CVE-2022-22737 Race condition when playing audio files
  + CVE-2021-4140 Iframe sandbox bypass with XSLT
  + CVE-2022-22748 Spoofed origin on external protocol launch dialog
  + CVE-2022-22745 Leaking cross-origin URLs through securitypolicyviolation event
  + CVE-2022-22744 The 'Copy as curl' feature in DevTools did not fully escape website-controlled data, potentially leading to command injection
  + CVE-2022-22747 Crash when handling empty pkcs7 sequence
  + CVE-2022-22739 Missing throttling on external protocol launch dialog
  + CVE-2022-22751 Memory safety bugs fixed in Thunderbird 91.5
21 декабря 2021 г. Andrey Cherepanov 91.4.1-alt1
- New version.
- Security fixes:
  + CVE-2021-4126 OpenPGP signature status doesn't consider additional message content
  + CVE-2021-44538 Matrix chat library libolm bundled with Thunderbird vulnerable to a buffer overflow
10 декабря 2021 г. Andrey Cherepanov 91.4.0-alt1
- New version.
- Security fixes:
  + CVE-2021-43536 URL leakage when navigating while executing asynchronous function
  + CVE-2021-43537 Heap buffer overflow when using structured clone
  + CVE-2021-43538 Missing fullscreen and pointer lock notification when requesting both
  + CVE-2021-43539 GC rooting failure when calling wasm instance methods
  + CVE-2021-43541 External protocol handler parameters were unescaped
  + CVE-2021-43542 XMLHttpRequest error codes could have leaked the existence of an external protocol handler
  + CVE-2021-43543 Bypass of CSP sandbox directive when embedding
  + CVE-2021-43545 Denial of Service when using the Location API in a loop
  + CVE-2021-43546 Cursor spoofing could overlay user interface when native cursor is zoomed
  + CVE-2021-43528 JavaScript unexpectedly enabled for the composition area
VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
Версия: v24.4.2
Наверх