Overview Details

File _patchinfo of Package patchinfo

<patchinfo>
  <issue id="875378" tracker="bnc">VUL-0: Firefox 29 security release</issue>
  <issue id="CVE-2014-1518" tracker="cve" />
  <issue id="CVE-2014-1523" tracker="cve" />
  <issue id="CVE-2014-1524" tracker="cve" />
  <issue id="CVE-2014-1532" tracker="cve" />
  <issue id="CVE-2014-1531" tracker="cve" />
  <issue id="CVE-2014-1530" tracker="cve" />
  <issue id="CVE-2014-1529" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>wrosenauer</packager>
  <description>This is a MozillaThunderbird update to version 24.5.0:
  * MFSA 2014-34/CVE-2014-1518
    Miscellaneous memory safety hazards
  * MFSA 2014-37/CVE-2014-1523 (bmo#969226)
    Out of bounds read while decoding JPG images
  * MFSA 2014-38/CVE-2014-1524 (bmo#989183)
    Buffer overflow when using non-XBL object as XBL
  * MFSA 2014-42/CVE-2014-1529 (bmo#987003)
    Privilege escalation through Web Notification API
  * MFSA 2014-43/CVE-2014-1530 (bmo#895557)
    Cross-site scripting (XSS) using history navigations
  * MFSA 2014-44/CVE-2014-1531 (bmo#987140)
    Use-after-free in imgLoader while resizing images
  * MFSA 2014-46/CVE-2014-1532 (bmo#966006)
    Use-after-free in nsHostResolver
- use shipped-locales as the authoritative source for supported
  locales (some unsupported locales disappear from -other package)
</description>
  <summary>update for MozillaThunderbird</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places