thunderbird 1:91.4.0-1 source package in Debian
Changelog
thunderbird (1:91.4.0-1) unstable; urgency=medium * [7752be0] d/source.filter: Small updates to filtering list * [0899850] New upstream version 91.4.0 Fixed CVE issues in upstream version 91.4 (MFSA 2021-54): CVE-2021-43536: URL leakage when navigating while executing asynchronous function CVE-2021-43537: Heap buffer overflow when using structured clone CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both CVE-2021-43539: GC rooting failure when calling wasm instance methods CVE-2021-43541: External protocol handler parameters were unescaped CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler CVE-2021-43543: Bypass of CSP sandbox directive when embedding CVE-2021-43545: Denial of Service when using the Location API in a loop CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed CVE-2021-43528: JavaScript unexpectedly enabled for the composition area MOZ-2021-0009: Memory safety bugs fixed in Thunderbird 91.4.0 * [afd7750] d/t.lintian-overrides: Update entries due renamed tags Some Lintan tags were renamed, thus requires am adjustment of the existing overrides. * [30a387c] d/s/lintian-overrides: Adjust most of the existing entries Same as before but for the source package. -- Carsten Schoenert <email address hidden> Tue, 07 Dec 2021 18:26:44 +0100
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
thunderbird_91.4.0-1.dsc | 8.2 KiB | 287322ab79c8c0defbd64b8e8de4f08ec200a2c5003ce399ac5f161fe1fc91a2 |
thunderbird_91.4.0.orig-thunderbird-l10n.tar.xz | 11.5 MiB | a2d3389255c4aec36a60522e4bef971deec1a5a09f5bb5046e8e5eec4c2b0556 |
thunderbird_91.4.0.orig.tar.xz | 407.3 MiB | 679aa6ecd3583f7a25c62ef31169d84c14539a35240775e1560fa7bff070428d |
thunderbird_91.4.0-1.debian.tar.xz | 529.5 KiB | 09bcfe06ba3ad3b2a47a463b8efe663210f36183904056275d1e2bd13af4066d |
No changes file available.