Request 1042791: Submit MozillaThunderbird - openSUSE Build Service

Overview

Request 1042791 accepted

- Mozilla Thunderbird 102.6.0
https://www.thunderbird.net/en-US/thunderbird/102.6.0/releasenotes/
MFSA 2022-53 (bsc#1206242)
* CVE-2022-46880 (bmo#1749292)
Use-after-free in WebGL
* CVE-2022-46872 (bmo#1799156)
Arbitrary file read from a compromised content process
* CVE-2022-46881 (bmo#1770930)
Memory corruption in WebGL
* CVE-2022-46874 (bmo#1746139)
Drag and Dropped Filenames could have been truncated to
malicious extensions
* CVE-2022-46875 (bmo#1786188)
Download Protections were bypassed by .atloc and .ftploc
files on Mac OS
* CVE-2022-46882 (bmo#1789371)
Use-after-free in WebGL
* CVE-2022-46878 (bmo#1782219, bmo#1797370, bmo#1797685,
bmo#1801102, bmo#1801315, bmo#1802395)
Memory safety bugs fixed in Thunderbird 102.6
- removed obsolete patches
mozilla-newer-cbindgen.patch
mozilla-glibc236.patch

Created by wrosenauer over 1 year ago
In state accepted

Submit MozillaThunderbird

Comments for request 1042791 0

Login required, please login in order to comment

Request History

wrosenauer created request over 1 year ago

- Mozilla Thunderbird 102.6.0
https://www.thunderbird.net/en-US/thunderbird/102.6.0/releasenotes/
MFSA 2022-53 (bsc#1206242)
* CVE-2022-46880 (bmo#1749292)
Use-after-free in WebGL
* CVE-2022-46872 (bmo#1799156)
Arbitrary file read from a compromised content process
* CVE-2022-46881 (bmo#1770930)
Memory corruption in WebGL
* CVE-2022-46874 (bmo#1746139)
Drag and Dropped Filenames could have been truncated to
malicious extensions
* CVE-2022-46875 (bmo#1786188)
Download Protections were bypassed by .atloc and .ftploc
files on Mac OS
* CVE-2022-46882 (bmo#1789371)
Use-after-free in WebGL
* CVE-2022-46878 (bmo#1782219, bmo#1797370, bmo#1797685,
bmo#1801102, bmo#1801315, bmo#1802395)
Memory safety bugs fixed in Thunderbird 102.6
- removed obsolete patches
mozilla-newer-cbindgen.patch
mozilla-glibc236.patch

factory-auto added opensuse-review-team as a reviewer over 1 year ago

Please review sources

factory-auto accepted review over 1 year ago

Check script succeeded

licensedigger accepted review over 1 year ago

ok

dimstar accepted review over 1 year ago

dimstar_suse set openSUSE:Factory:Staging:D as a staging project over 1 year ago

Being evaluated by staging project "openSUSE:Factory:Staging:D"

dimstar_suse accepted review over 1 year ago

Picked "openSUSE:Factory:Staging:D"

dimstar_suse accepted review over 1 year ago

Staging Project openSUSE:Factory:Staging:D got accepted.

dimstar_suse approved review over 1 year ago

Staging Project openSUSE:Factory:Staging:D got accepted.

dimstar_suse accepted request over 1 year ago

Staging Project openSUSE:Factory:Staging:D got accepted.

openSUSE Build Service is sponsored by