Revisions of MozillaThunderbird
Stefan Lijewski (lijews)
accepted
request 109219
from
Wolfgang Rosenauer (wrosenauer)
(revision 11)
- security update to 3.1.20 (bnc#750044) * MFSA 2011-55/CVE-2011-3658 (bmo#708186) nsSVGValue out-of-bounds access * MFSA 2012-13/CVE-2012-0455 (bmo#704354) XSS with Drag and Drop and Javascript: URL * MFSA 2012-14/CVE-2012-0456/CVE-2012-0457 (bmo#711653, #720103) SVG issues found with Address Sanitizer * MFSA 2012-16/CVE-2012-0458 Escalation of privilege with Javascript: URL as home page * MFSA 2012-19/CVE-2012-0461/CVE-2012-0462/CVE-2012-0464/ CVE-2012-0463 Miscellaneous memory safety hazards
Stefan Lijewski (lijews)
accepted
request 105415
from
Wolfgang Rosenauer (wrosenauer)
(revision 10)
- security update to 3.1.19 (bnc#747328) * CVE-2011-3026 (bmo#727401) libpng: integer overflow leading to heap-buffer overflow
Stefan Lijewski (lijews)
accepted
request 102322
from
Wolfgang Rosenauer (wrosenauer)
(revision 9)
- security update to 3.1.18 (bnc#744275) * MFSA 2012-01/CVE-2012-0442/CVE-2012-0443 Miscellaneous memory safety hazards * MFSA 2012-02/CVE-2011-3670 (bmo#504014) * MFSA 2012-04/CVE-2011-3659 (bmo#708198) Child nodes from nsDOMAttribute still accessible after removal of nodes * MFSA 2012-07/CVE-2012-0444 (bmo#719612) Potential Memory Corruption When Decoding Ogg Vorbis files * MFSA 2012-08/CVE-2012-0449 (bmo#701806, bmo#702466) Crash with malformed embedded XSLT stylesheets
Stefan Lijewski (lijews)
accepted
request 97371
from
Wolfgang Rosenauer (wrosenauer)
(revision 8)
- security update to 3.1.17 (bnc#737533) * MFSA 2011-59/CVE-2011-3666 (bmo#704622) .jar not treated as executable in Firefox 3.6 on Mac
Stefan Lijewski (lijews)
accepted
request 90800
from
Wolfgang Rosenauer (wrosenauer)
(revision 7)
- security update to 3.1.16 (bnc#728520) * MFSA 2011-46/CVE-2011-3647 (bmo#680880) loadSubScript unwraps XPCNativeWrapper scope parameter * MFSA 2011-47/CVE-2011-3648 (bmo#690225) Potential XSS against sites using Shift-JIS * MFSA 2011-49/CVE-2011-3650 (bmo#674776) Memory corruption while profiling using Firebug * MFSA 2011-36/CVE-2011-2995/CVE-2011-2996 Miscellaneous memory safety hazards * MFSA 2011-38/CVE-2011-2999 (bmo#665548) XSS via plugins and shadowed window.location object * MFSA 2011-39/CVE-2011-3000 (bmo#655389) Defense against multiple Location headers due to CRLF Injection * MFSA 2011-40/CVE-2011-2372/CVE-2011-3001 Code installation through holding down Enter
Stefan Lijewski (lijews)
accepted
request 85238
from
Wolfgang Rosenauer (wrosenauer)
(revision 6)
- security update to 3.1.15 (bnc#720264)
Stefan Lijewski (lijews)
accepted
request 81789
from
Wolfgang Rosenauer (wrosenauer)
(revision 5)
- security update to 3.1.14 (bnc#714931) * Complete blocking of certificates issued by DigiNotar (bmo#683449) - security update to 3.1.13 (bnc#714931) * MFSA 2011-34 Protection against fraudulent DigiNotar certificates (bmo#682927) - make enigmail a subversion of Thunderbird to fix %release number tracking issues with the Open Build Service
Stefan Lijewski (lijews)
committed
(revision 4)
removed _link
Stefan Lijewski (lijews)
accepted
request 79170
from
Wolfgang Rosenauer (wrosenauer)
(revision 3)
bnc#712224
Stefan Lijewski (lijews)
accepted
request 74273
from
Wolfgang Rosenauer (wrosenauer)
(revision 2)
3.1.11
unknown
committed
(revision 1)
Displaying all 11 revisions