July 13, 2020 Andrey Cherepanov 68.10.0-alt1
- New version (68.10.0).
- Fixes:
+ CVE-2020-12417 Memory corruption due to missing sign-extension for ValueTags on ARM64
+ CVE-2020-12418 Information disclosure due to manipulated URL object
+ CVE-2020-12419 Use-after-free in nsGlobalWindowInner
+ CVE-2020-12420 Use-After-Free when trying to connect to a STUN server
+ CVE-2020-12421 Add-On updates did not respect the same certificate trust rules as software updates
+ MFSA-2020-0001 Automatic account setup leaks Microsoft Exchange login credentials
- Enigmail 2.1.7.