Debian
thunderbird package

thunderbird 1:68.6.0-1 source package in Debian

Changelog

thunderbird (1:68.6.0-1) unstable; urgency=medium

  * [5709774] New upstream version 68.6.0
    Fixed CVE issues in upstream version 68.6.0 (MFSA 2020-10):
    CVE-2019-20503: Out of bounds reads in sctp_load_addresses_from_init
    CVE-2020-6805: Use-after-free when removing data about origins
    CVE-2020-6806: BodyStream::OnInputStreamReady was missing protections
                   against state confusion
    CVE-2020-6807: Use-after-free in cubeb during stream destruction
    CVE-2020-6811: Devtools' 'Copy as cURL' feature did not fully escape
                   website-controlled data, potentially leading to
                   command injection
    CVE-2020-6812: The names of AirPods with personally identifiable
                   information were exposed to websites with camera or
                   microphone permission
    CVE-2020-6814: Memory safety bugs fixed in Thunderbird 68.6

 -- Carsten Schoenert <email address hidden>  Mon, 16 Mar 2020 20:01:29 +0100

Upload details

Uploaded by:
tijuca
Uploaded to:
Sid
Original maintainer:
tijuca
Architectures:
amd64 arm64 i386 mips64el ppc64el s390x ppc64 all
Section:
misc
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
thunderbird_68.6.0-1.dsc 8.1 KiB 9bec679ef0a6201168df6c1fc1cb6f42249c4455110ec3d1312326dc3102e806
thunderbird_68.6.0.orig-lightning-l10n.tar.xz 1022.3 KiB bffe30fd372d1660b2e9fd9f64f1faa23bef9b708d0c22c22e5db43cfe99eb7e
thunderbird_68.6.0.orig-thunderbird-l10n.tar.xz 9.4 MiB 2b97cee9f8651f6b5ac6386b225c16758b59b4934003fa6f6c59af7bab437a0b
thunderbird_68.6.0.orig.tar.xz 340.4 MiB ece4422ade1838b3c2a543803d71f2890041806c0eb1f6801cf76ee65afa5b85
thunderbird_68.6.0-1.debian.tar.xz 533.7 KiB 211da736c2088dedff50f955fef5530251e9981d75447b2bb5a1a96708ffacd0

No changes file available.

Binary packages built by this source