Overview

File _patchinfo of Package patchinfo.import4800

<patchinfo incident="MozillaThunderbird" version="4800">
  <issue tracker="bnc" id="701296" />
  <issue tracker="CVE" id="CVE-2011-0083" />
  <issue tracker="CVE" id="CVE-2011-0085" />
  <issue tracker="CVE" id="CVE-2011-2362" />
  <issue tracker="CVE" id="CVE-2011-2363" />
  <issue tracker="CVE" id="CVE-2011-2364" />
  <issue tracker="CVE" id="CVE-2011-2365" />
  <issue tracker="CVE" id="CVE-2011-2371" />
  <issue tracker="CVE" id="CVE-2011-2373" />
  <issue tracker="CVE" id="CVE-2011-2374" />
  <issue tracker="CVE" id="CVE-2011-2376" />
  <issue tracker="CVE" id="CVE-2011-2377" />
  <category>security</category>
  <rating>low</rating>
  <summary>MozillaThunderbird: Update to Thunderbird 3.1.11</summary>
  <description>Mozilla Thunderbird was updated to the 3.1.11 release.

It has new features, fixes lots of bugs, and also fixes the
following security issues:
  * MFSA 2011-19/CVE-2011-2374 CVE-2011-2376 CVE-2011-2364
    CVE-2011-2365 Miscellaneous memory safety hazards
  * MFSA 2011-20/CVE-2011-2373 (bmo#617247) Use-after-free
    vulnerability when viewing XUL document with script
    disabled
  * MFSA 2011-21/CVE-2011-2377 (bmo#638018, bmo#639303)
    Memory corruption due to multipart/x-mixed-replace
    images
  * MFSA 2011-22/CVE-2011-2371 (bmo#664009) Integer
    overflow and arbitrary code execution in
    Array.reduceRight()
  * MFSA 2011-23/CVE-2011-0083 CVE-2011-0085 CVE-2011-2363
    Multiple dangling pointer vulnerabilities
  * MFSA 2011-24/CVE-2011-2362 (bmo#616264) Cookie
    isolation error
</description>
  <packager>adrianSuSE</packager>
</patchinfo>
openSUSE Build Service is sponsored by
Places