Описание
ELSA-2012-1351: thunderbird security update (CRITICAL)
[10.0.8-1.0.1.el6_3]
- Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js
- Replace clean.gif in tarball
[10.0.8-1]
- Update to 10.0.8 ESR
Обновленные пакеты
Oracle Linux 6
Oracle Linux x86_64
thunderbird
10.0.8-1.0.1.el6_3
Oracle Linux i686
thunderbird
10.0.8-1.0.1.el6_3
Oracle Linux 5
Oracle Linux x86_64
thunderbird
10.0.8-1.0.2.el5_8
Oracle Linux i386
thunderbird
10.0.8-1.0.2.el5_8
Ссылки на источники
Связанные уязвимости
ELSA-2012-1350: firefox security and bug fix update (CRITICAL)
Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly manage history data, which allows remote attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive POST content via vectors involving a location.hash write operation and history navigation that triggers the loading of a URL into the history object.
Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly manage history data, which allows remote attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive POST content via vectors involving a location.hash write operation and history navigation that triggers the loading of a URL into the history object.
Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 do not properly manage history data, which allows remote attackers to conduct cross-site scripting (XSS) attacks or obtain sensitive POST content via vectors involving a location.hash write operation and history navigation that triggers the loading of a URL into the history object.
Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbi ...