File _patchinfo of Package patchinfo.20857

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.20857

<patchinfo incident="20857">
  <issue tracker="bnc" id="1188891">VUL-0: MozillaFirefox / MozillaThunderbird: update to 91 and 78.13esr/91.0esr</issue>
  <issue tracker="cve" id="2021-29980"/>
  <issue tracker="cve" id="2021-29988"/>
  <issue tracker="cve" id="2021-29985"/>
  <issue tracker="cve" id="2021-29986"/>
  <issue tracker="cve" id="2021-29989"/>
  <issue tracker="cve" id="2021-29984"/>
  <packager>MSirringhaus</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for MozillaThunderbird</summary>
  <description>This update for MozillaThunderbird fixes the following issues:

Update to version 78.13 (MFSA 2021-35, bsc#1188891)

- CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption
- CVE-2021-29988: Memory corruption as a result of incorrect style treatment
- CVE-2021-29984: Incorrect instruction reordering during JIT optimization
- CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption
- CVE-2021-29985: Use-after-free media channels
- CVE-2021-29989: Memory safety bugs fixed in Thunderbird 78.13
</description>
</patchinfo>

Places

File _patchinfo of Package patchinfo.20857

Places