Описание
ELSA-2012-1413: thunderbird security update (IMPORTANT)
[10.0.10-1.0.1.el6_3]
- Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js
[10.0.10-1]
- Update to 10.0.10 ESR
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
thunderbird
10.0.10-1.0.1.el5_8
Oracle Linux i386
thunderbird
10.0.10-1.0.1.el5_8
Oracle Linux 6
Oracle Linux x86_64
thunderbird
10.0.10-1.0.1.el6_3
Oracle Linux i686
thunderbird
10.0.10-1.0.1.el6_3
Связанные CVE
Связанные уязвимости
Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 do not prevent use of the valueOf method to shadow the location object (aka window.location), which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via vectors involving a plugin.
Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 do not prevent use of the valueOf method to shadow the location object (aka window.location), which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via vectors involving a plugin.
Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 do not prevent use of the valueOf method to shadow the location object (aka window.location), which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via vectors involving a plugin.
Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunde ...