Lucene search

K
altlinuxHttps://packages.altlinux.org/en/sisyphus/security/D4F8C15CE034FEF22C6E5D360A07D3D4
HistoryNov 02, 2021 - 12:00 a.m.

Security fix for the ALT Linux 10 package thunderbird version 91.2.1-alt1

2021-11-0200:00:00
https://packages.altlinux.org/en/sisyphus/security/
packages.altlinux.org
10
security fix
alt linux 10
thunderbird
cve-2021-38502
cve-2021-38496
cve-2021-38497
cve-2021-38498
cve-2021-32810
cve-2021-38500
cve-2021-38501

EPSS

0.009

Percentile

82.8%

91.2.1-alt1 built Nov. 2, 2021 Anton Farygin in task #281644

91.2.1-alt1 built Oct. 26, 2021 Andrey Cherepanov in task #287811

Oct. 22, 2021 Andrey Cherepanov

- New version.
- Security fixes:
  + CVE-2021-38502 Downgrade attack on SMTP STARTTLS connections
  + CVE-2021-38496 Use-after-free in MessageTask
  + CVE-2021-38497 Validation message could have been overlaid on another origin
  + CVE-2021-38498 Use-after-free of nsLanguageAtomService object
  + CVE-2021-32810 Data race in crossbeam-deque
  + CVE-2021-38500 Memory safety bugs fixed in Thunderbird 91.2
  + CVE-2021-38501 Memory safety bugs fixed in Thunderbird 91.2