pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/mail/thunderbird10

Module Name:    pkgsrc
Committed By:   ryoon
Date:           Sat Oct 13 10:19:37 UTC 2012

Modified Files:
        pkgsrc/mail/thunderbird10: Makefile distinfo

Log Message:
Update to 10.0.9

Fixed in Thunderbird ESR 10.0.9
MFSA 2012-89 defaultValue security checks not applied

Fixed in Thunderbird ESR 10.0.8
MFSA 2012-87 Use-after-free in the IME State Manager
MFSA 2012-86 Heap memory corruption issues found using Address Sanitizer
MFSA 2012-85 Use-after-free, buffer overflow, and out of bounds read issues 
found using Address Sanitizer
MFSA 2012-84 Spoofing and script injection through location.hash
MFSA 2012-83 Chrome Object Wrapper (COW) does not disallow acces to privileged 
functions or properties
MFSA 2012-82 top object and location property accessible by plugins
MFSA 2012-81 GetProperty function can bypass security checks
MFSA 2012-79 DOS and crash with full screen and history navigation
MFSA 2012-77 Some DOMWindowUtils methods bypass security checks
MFSA 2012-74 Miscellaneous memory safety hazards (rv:16.0/ rv:10.0.8)
MFSA 2012-59 Location object can be shadowed using Object.defineProperty

To generate a diff of this commit:
cvs rdiff -u -r1.15 -r1.16 pkgsrc/mail/thunderbird10/Makefile
cvs rdiff -u -r1.7 -r1.8 pkgsrc/mail/thunderbird10/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Home | Main Index | Thread Index | Old Index