Overview Repositories Revisions Requests Users Attributes Meta
Security update for Mozilla Thunderbird

This update for Mozilla Thunderbird to version 52.5.2 fixes the following vulnerabilities:

- CVE-2017-7846: JavaScript Execution via RSS in mailbox:// origin (bsc#1074043)
- CVE-2017-7847: Local path string can be leaked from RSS feed (bsc#1074044)
- CVE-2017-7848: RSS Feed vulnerable to new line Injection (bsc#1074045)
- CVE-2017-7829: From address with encoded null character is cut off in message header display (bsc#1074046)

Fixed bugs
bnc#1074043
VUL-0: CVE-2017-7846: MozillaThunderbird: JavaScript Execution via RSS in mailbox:// origin
bnc#1074044
VUL-0: CVE-2017-7847: MozillaThunderbird: Local path string can be leaked from RSS feed
bnc#1074045
VUL-0: CVE-2017-7848: MozillaThunderbird: RSS Feed vulnerable to new line Injection
bnc#1074046
VUL-1: CVE-2017-7829: MozillaThunderbird: From address with encoded null character is cut off in message header display
CVE-2017-7846
CVE-2017-7847
CVE-2017-7848
CVE-2017-7829
Selected Binaries
openSUSE Build Service is sponsored by
Places