openSUSE-SU-2012:0917-1 -- Suse MozillaThunderbirdID: oval:org.secpod.oval:def:400407 | Date: (C)2012-12-31 (M)2021-12-09 |
Class: PATCH | Family: unix |
Mozilla Thunderbird was updated to version 14.0 * MFSA 2012-42/CVE-2012-1949/CVE-2012-1948 Miscellaneous memory safety hazards * MFSA 2012-44/CVE-2012-1951/CVE-2012-1954/CVE-2012-1953/CVE-2012-1 952 Gecko memory corruption * MFSA 2012-45/CVE-2012-1955 Spoofing issue with location * MFSA 2012-47/CVE-2012-1957 Improper filtering of javascript in HTML feed-view * MFSA 2012-48/CVE-2012-1958 use-after-free in nsGlobalWindow::PageHidden * MFSA 2012-49/CVE-2012-1959 Same-compartment Security Wrappers can be bypassed * MFSA 2012-50/CVE-2012-1960 Out of bounds read in QCMS * MFSA 2012-51/CVE-2012-1961 X-Frame-Options header ignored when duplicated * MFSA 2012-52/CVE-2012-1962 JSDependentString::undepend string conversion results in memory corruption * MFSA 2012-53/CVE-2012-1963 Content Security Policy 1.0 implementation errors cause data leakage * MFSA 2012-56/CVE-2012-1967 Code execution through javascript: URLs * relicensed to MPL-2.0 - update Enigmail to 1.4.3 - no crashreport on %arm, fixing build
Product: |
MozillaThunderbird |