Описание
Security update for MozillaThunderbird
This update for MozillaThunderbird fixes the following issues:
-
Mozilla Thunderbird 91.12
- changed: Support for Google Talk chat accounts removed
- fixed: OpenPGP signatures were broken when 'Primary Password' dialog remained open
- fixed: Various security fixes
-
Security fixes (MFSA 2022-31) (bsc#1201758):
- CVE-2022-36319: Fixed mouse Position spoofing with CSS transforms (bmo#1737722)
- CVE-2022-36318: Fixed directory indexes for bundled resources reflected URL parameters (bmo#1771774)
Список пакетов
SUSE Linux Enterprise Module for Package Hub 15 SP3
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP4
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Workstation Extension 15 SP3
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Workstation Extension 15 SP4
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
openSUSE Leap 15.3
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
openSUSE Leap 15.4
MozillaThunderbird-91.12.0-150200.8.79.1
MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
Ссылки
- Link for SUSE-SU-2022:2748-1
- E-Mail link for SUSE-SU-2022:2748-1
- SUSE Security Ratings
- SUSE Bug 1201758
- SUSE CVE CVE-2022-36318 page
- SUSE CVE CVE-2022-36319 page
Описание
When visiting directory listings for `chrome://` URLs as source text, some parameters were reflected. This vulnerability affects Firefox ESR < 102.1, Firefox ESR < 91.12, Firefox < 103, Thunderbird < 102.1, and Thunderbird < 91.12.
Затронутые продукты
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-91.12.0-150200.8.79.1
Ссылки
- CVE-2022-36318
Описание
When combining CSS properties for overflow and transform, the mouse cursor could interact with different coordinates than displayed. This vulnerability affects Firefox ESR < 102.1, Firefox ESR < 91.12, Firefox < 103, Thunderbird < 102.1, and Thunderbird < 91.12.
Затронутые продукты
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-91.12.0-150200.8.79.1
SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-91.12.0-150200.8.79.1
Ссылки
- CVE-2022-36319