Lucene search

K
altlinuxHttps://packages.altlinux.org/en/sisyphus/security/45A4FFF8C328752CCC24BE918AFB7C23
HistoryJan 11, 2020 - 12:00 a.m.

Security fix for the ALT Linux 10 package thunderbird version 68.4.1-alt1

2020-01-1100:00:00
https://packages.altlinux.org/en/sisyphus/security/
packages.altlinux.org
11

0.534 Medium

EPSS

Percentile

97.6%

Jan. 11, 2020 Andrey Cherepanov 68.4.1-alt1

- New version (68.4.1).
- Fixed:
  + CVE-2019-17026 IonMonkey type confusion with StoreElementHole and FallibleStoreElement
  + CVE-2019-17015 Memory corruption in parent process during new content process initialization on Windows
  + CVE-2019-17016 Bypass of @namespace CSS sanitization during pasting
  + CVE-2019-17017 Type Confusion in XPCVariant.cpp
  + CVE-2019-17021 Heap address disclosure in parent process during content process initialization on Windows
  + CVE-2019-17022 CSS sanitization does not escape HTML tags
  + CVE-2019-17024 Memory safety bugs fixed in Thunderbird 68.4.1
- Enigmail 2.1.5.