#19798 closed enhancement (fixed)
thunderbird-115.11.1
| Reported by: | Douglas R. Reno | Owned by: | Douglas R. Reno |
|---|---|---|---|
| Priority: | elevated | Milestone: | 12.2 |
| Component: | BOOK | Version: | git |
| Severity: | normal | Keywords: | |
| Cc: |
Description ¶
New minor version
This corresponds with the Firefox/Spidermonkey updates
Change History (5)
comment:1 by , 10 months ago
| Owner: | changed from to |
|---|---|
| Status: | new → assigned |
comment:2 by , 10 months ago
| Summary: | thunderbird-115.11.0 → thunderbird-115.11.1 |
|---|
comment:3 by , 10 months ago
| Resolution: | → fixed |
|---|---|
| Status: | assigned → closed |
comment:4 by , 10 months ago
Fixes:
- Splitter arrow between task list and task description did not behave as expected
- Calendar Event Attendees dialog had incorrectly sized rows
- Security fixes
Security fixes:
- CVE-2024-4367: Arbitrary JavaScript execution in PDF.js (High)
- CVE-2024-4767: IndexedDB files retained in private browsing mode (Moderate)
- CVE-2024-4768: Potential permissions request bypass via clickjacking (Moderate)
- CVE-2024-4769: Cross-origin responses could be distinguished between script and non-script content-types (Moderate)
- CVE-2024-4770: Use-after-free could occur when printing to PDF (Moderate)
- CVE-2024-4777: Memory safety bugs fixed in Firefox 126, Firefox ESR 115.11, and Thunderbird 115.11 (Moderate)
Note:
See TracTickets
for help on using tickets.
Fixed at a4325b648794c0b8eebe7e9ae1b6e2a10d9d0408
I'll put the release notes and file a security advisory here tomorrow.