Overview Repositories Revisions Requests Users Attributes Meta

Revisions of MozillaThunderbird

Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 109319 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 12) 
- security update to 3.1.20 (bnc#750044)
  * MFSA 2011-55/CVE-2011-3658 (bmo#708186)
    nsSVGValue out-of-bounds access
  * MFSA 2012-13/CVE-2012-0455 (bmo#704354)
    XSS with Drag and Drop and Javascript: URL
  * MFSA 2012-14/CVE-2012-0456/CVE-2012-0457 (bmo#711653, #720103)
    SVG issues found with Address Sanitizer
  * MFSA 2012-16/CVE-2012-0458
    Escalation of privilege with Javascript: URL as home page
  * MFSA 2012-19/CVE-2012-0461/CVE-2012-0462/CVE-2012-0464/
    CVE-2012-0463
    Miscellaneous memory safety hazards
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 105523 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 11) 
- security update to 3.1.19 (bnc#747328)
  * CVE-2011-3026 (bmo#727401)
    libpng: integer overflow leading to heap-buffer overflow
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 102564 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 10) 
- security update to 3.1.18 (bnc#744275)
  * MFSA 2012-01/CVE-2012-0442/CVE-2012-0443
    Miscellaneous memory safety hazards
  * MFSA 2012-02/CVE-2011-3670 (bmo#504014)
  * MFSA 2012-04/CVE-2011-3659 (bmo#708198)
    Child nodes from nsDOMAttribute still accessible after removal
    of nodes
  * MFSA 2012-07/CVE-2012-0444 (bmo#719612)
    Potential Memory Corruption When Decoding Ogg Vorbis files
  * MFSA 2012-08/CVE-2012-0449 (bmo#701806, bmo#702466)
    Crash with malformed embedded XSLT stylesheets
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 97475 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 9) 
- security update to 3.1.17 (bnc#737533)
  * MFSA 2011-59/CVE-2011-3666 (bmo#704622)
    .jar not treated as executable in Firefox 3.6 on Mac
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 90892 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 8) 
- security update to 3.1.16 (bnc#728520)
  * MFSA 2011-46/CVE-2011-3647 (bmo#680880)
    loadSubScript unwraps XPCNativeWrapper scope parameter
  * MFSA 2011-47/CVE-2011-3648 (bmo#690225)
    Potential XSS against sites using Shift-JIS
  * MFSA 2011-49/CVE-2011-3650 (bmo#674776)
    Memory corruption while profiling using Firebug

  * MFSA 2011-36/CVE-2011-2995/CVE-2011-2996
    Miscellaneous memory safety hazards
  * MFSA 2011-38/CVE-2011-2999 (bmo#665548)
    XSS via plugins and shadowed window.location object
  * MFSA 2011-39/CVE-2011-3000 (bmo#655389)
    Defense against multiple Location headers due to CRLF Injection
  * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001
    Code installation through holding down Enter
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 85441 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 7) 
- security update to 3.1.15 (bnc#720264)
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) accepted request 81796 from Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) (revision 6) 
- security update to 3.1.14 (bnc#714931)
  * Complete blocking of certificates issued by DigiNotar
    (bmo#683449)

- security update to 3.1.13 (bnc#714931)
  * MFSA 2011-34
    Protection against fraudulent DigiNotar certificates
    (bmo#682927)

- make enigmail a subversion of Thunderbird to fix %release
  number tracking issues with the Open Build Service
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) committed (revision 4)
Wolfgang Rosenauer's avatar Wolfgang Rosenauer (wrosenauer) committed (revision 1) 
osc copypac from project:openSUSE:Evergreen:11.1:Test package:MozillaThunderbird revision:2
Displaying all 12 revisions
openSUSE Build Service is sponsored by
Places