Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:2748-1

Опубликовано: 10 авг. 2022
Источник: suse-cvrf

Описание

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues:

  • Mozilla Thunderbird 91.12

    • changed: Support for Google Talk chat accounts removed
    • fixed: OpenPGP signatures were broken when 'Primary Password' dialog remained open
    • fixed: Various security fixes
  • Security fixes (MFSA 2022-31) (bsc#1201758):

    • CVE-2022-36319: Fixed mouse Position spoofing with CSS transforms (bmo#1737722)
    • CVE-2022-36318: Fixed directory indexes for bundled resources reflected URL parameters (bmo#1771774)

Список пакетов

SUSE Linux Enterprise Module for Package Hub 15 SP3
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP4
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Workstation Extension 15 SP3
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Workstation Extension 15 SP4
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
openSUSE Leap 15.3
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
openSUSE Leap 15.4
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1

Описание

When visiting directory listings for `chrome://` URLs as source text, some parameters were reflected. This vulnerability affects Firefox ESR < 102.1, Firefox ESR < 91.12, Firefox < 103, Thunderbird < 102.1, and Thunderbird < 91.12.


Затронутые продукты
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-91.12.0-150200.8.79.1

Ссылки

Описание

When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This vulnerability affects Firefox ESR < 102.1, Firefox ESR < 91.12, Firefox < 103, Thunderbird < 102.1, and Thunderbird < 91.12.


Затронутые продукты
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-91.12.0-150200.8.79.1

Ссылки