Debian
icedove package

icedove 2.0.0.24-0lenny1 source package in Debian

Changelog

icedove (2.0.0.24-0lenny1) stable-security; urgency=low


  * New upstream security/stability update (v2.0.0.23/v2.0.0.24)
    * MFSA 2009-42 aka CVE-2009-2408: Compromise of SSL-protected communication
    * MFSA 2009-43 aka CVE-2009-2404: Heap overflow in certificate regexp parsing
    * MFSA 2009-49 aka CVE-2009-3077: TreeColumns dangling pointer vulnerability
    * MFSA 2009-59 aka CVE-2009-0689: Heap buffer overflow in string to number conversion
    * MFSA 2009-62 aka CVE-2009-3376: Download filename spoofing with RTL override
    * MFSA 2009-68 aka CVE-2009-3983: NTLM reflection vulnerability
    * MFSA 2010-07 aka
      - CVE-2009-2463: Integer overflow in a base64 decoding function
      - CVE-2009-3072: Crash in the BinHex decoder
      - CVE-2009-3075: Crash in the JavaScript engine
      - CVE-2010-0163: Crash indexing some messages with attachments
  * adjust patches for new upstream
    - update debian/patches/18_kbsd_nspr.dpatch
    - update debian/patches/autoconf2.13-rerun
    - update debian/patches/ubuntu-mail-app-xre-name

 -- Christoph Goehre <email address hidden>  Sat, 27 Mar 2010 12:06:44 +0100

Upload details

Uploaded by:
Alexander Sack
Uploaded to:
Lenny
Original maintainer:
Alexander Sack
Architectures:
any
Section:
mail
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Lenny release main mail

Builds

Downloads

File Size SHA-256 Checksum
icedove_2.0.0.24-0lenny1.dsc 1.6 KiB 5e30a91315ffec8d16a4ef3c1006cbecf0162b60e1090314541e04f1157a3539
icedove_2.0.0.24.orig.tar.gz 34.2 MiB 8939873bd9fc2dbabc34ad25516a7358aa7ee82e60c901fba8623521f95ed35e
icedove_2.0.0.24-0lenny1.diff.gz 100.8 KiB d61576a1173064639c9d7c87be9ac135c3b73345df2e2981c976bba188654bd2

No changes file available.

Binary packages built by this source