From 1be510f9529cb082f802408b472a77d074b394c0 Mon Sep 17 00:00:00 2001 From: Nicolas Vigier Date: Sun, 14 Apr 2013 13:46:12 +0000 Subject: Add zarb MLs html archives --- zarb-ml/mageia-dev/2012-April/014903.html | 126 ++++++++++++++++++++++++++++++ 1 file changed, 126 insertions(+) create mode 100644 zarb-ml/mageia-dev/2012-April/014903.html (limited to 'zarb-ml/mageia-dev/2012-April/014903.html') diff --git a/zarb-ml/mageia-dev/2012-April/014903.html b/zarb-ml/mageia-dev/2012-April/014903.html new file mode 100644 index 000000000..cb3a09cc9 --- /dev/null +++ b/zarb-ml/mageia-dev/2012-April/014903.html @@ -0,0 +1,126 @@ + + + + [Mageia-dev] Freeze push request: thunderbird and thunderbird-l10n + + + + + + + + + +

[Mageia-dev] Freeze push request: thunderbird and thunderbird-l10n

+ Florian Hubold + doktor5000 at arcor.de +
+ Thu Apr 26 20:00:28 CEST 2012 +

+
+ +
Hi,
+
+please push thunderbird and thunderbird-l10n,
+was just updated to 10.0.4ESR and fixes the following issues:
+
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-20.html
+    (Miscellaneous memory safety hazards [CVE-2012-0468, CVE-2012-0467])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-22.html
+    (use-after-free in IDBKeyRange[CVE-2012-0469])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-23.html
+    (Invalid frees causes heap corruption in gfxImageSurface [CVE-2012-0470])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-24.html
+    (Potential XSS via multibyte content processing errors [CVE-2012-0471])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-25.html
+    (Potential memory corruption during font rendering using cairo-dwrite
+     [CVE-2012-0472])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-26.html
+    (WebGL.drawElements may read illegal video memory due to
+     FindMaxUshortElement error [CVE-2012-0473])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-27.html
+    (Page load short-circuit can lead to XSS [CVE-2012-0474])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-28.html
+    (Ambiguous IPv6 in Origin headers may bypass webserver access restrictions
+     [CVE-2012-0475])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-29.html
+    (Potential XSS through ISO-2022-KR/ISO-2022-CN decoding issues
+     [CVE-2012-0477])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-30.html
+    (Crash with WebGL content using textImage2D [CVE-2012-0478])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-31.html
+    (Off-by-one error in OpenType Sanitizer [CVE-2011-3062])
+  o fixes http://www.mozilla.org/security/announce/2012/mfsa2012-33.html
+    (Potential site identity spoofing when loading RSS and Atom feeds
+     [CVE-2012-0479])
+- switch to Enigmail 1.4, officially supported version for ESR releases
+  o fixes a problem with inline PGP decrpytion 
+
+
+Kind Regards
+
+
+ + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
+

+ +
+More information about the Mageia-dev +mailing list
+ -- cgit v1.2.1