thunderbird 1:91.5.0-1 source package in Debian
Changelog
thunderbird (1:91.5.0-1) unstable; urgency=medium [ Carsten Schoenert ] * [8d4e5f8] New upstream version 91.5.0 Fixed CVE issues in upstream version 91.5 (MFSA 2022-03): CVE-2022-22743: Browser window spoof using fullscreen mode CVE-2022-22742: Out-of-bounds memory access when inserting text in edit mode CVE-2022-22741: Browser window spoof using fullscreen mode CVE-2022-22740: Use-after-free of ChannelEventQueue::mOwner CVE-2022-22738: Heap-buffer-overflow in blendGaussianBlur CVE-2022-22737: Race condition when playing audio files CVE-2021-4140: Iframe sandbox bypass with XSLT CVE-2022-22748: Spoofed origin on external protocol launch dialog CVE-2022-22745: Leaking cross-origin URLs through securitypolicyviolation event CVE-2022-22744: The 'Copy as curl' feature in DevTools did not fully escape website-controlled data, potentially leading to command injection CVE-2022-22747: Crash when handling empty pkcs7 sequence CVE-2022-22739: Missing throttling on external protocol launch dialog CVE-2022-22751: Memory safety bugs fixed in Thunderbird 91.5 * [a86c0b4] Rebuild patch queue from patch-queue branch Modified patch: debian-hacks/Add-another-preferences-directory-for-applications-p.patch Reworking the patch so LoadDirIntoArray is working again that is adding an additional syspref folder for global settings to use. (Closes: #997841, #1003280) * [442988b] autopkgtest: Adding check for accessing syspref folder [ Jochen Sprickerhof ] * [5b5d508] d/thunderbird-wrapper.sh: Use 'command -v' (Closes:#1002570 ) -- Carsten Schoenert <email address hidden> Tue, 11 Jan 2022 19:12:50 +0100
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
thunderbird_91.5.0-1.dsc | 8.2 KiB | 46f949a95ef8e0ef3d605fb64375af69b6f5b4031815b332fc9e8ec545c17dc2 |
thunderbird_91.5.0.orig-thunderbird-l10n.tar.xz | 11.5 MiB | fd289bdda7e01030b91628cbbef0ca6339b16df29f4d0cdc3d0aefdd2e3abe79 |
thunderbird_91.5.0.orig.tar.xz | 407.8 MiB | 8a86d2c6c1114bb4c2dd82586f45c39a24addb470b789176e34a7ea00f2ab4b2 |
thunderbird_91.5.0-1.debian.tar.xz | 530.7 KiB | 6735b3b9e880ecfdcfb94ace5be69bf7cc1c48c44236c4f50f36007eb3016c8a |
No changes file available.