exploitDog

RLSA-2023:1403

Опубликовано: 28 мар. 2023

Источник: rocky

Оценка: Important

Описание

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 102.9.0.

Security Fix(es):

Mozilla: Incorrect code generation during JIT compilation (CVE-2023-25751)
Mozilla: Memory safety bugs fixed in Firefox 111 and Firefox ESR 102.9 (CVE-2023-28176)
Mozilla: Potential out-of-bounds when accessing throttled streams (CVE-2023-25752)
Mozilla: Invalid downcast in Worklets (CVE-2023-28162)
Mozilla: URL being dragged from a removed cross-origin iframe into the same tab triggered navigation (CVE-2023-28164)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 8

Наименование	Архитектура	Релиз	RPM
thunderbird	x86_64	1.el8_7	thunderbird-102.9.0-1.el8_7.x86_64.rpm

Показывать по

Связанные CVE

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2178458
Red Hat - 2178458
https://bugzilla.redhat.com/show_bug.cgi?id=2178460
Red Hat - 2178460
https://bugzilla.redhat.com/show_bug.cgi?id=2178466
Red Hat - 2178466
https://bugzilla.redhat.com/show_bug.cgi?id=2178470
Red Hat - 2178470
https://bugzilla.redhat.com/show_bug.cgi?id=2178472
Red Hat - 2178472

Связанные уязвимости

RLSA-2023:1407

rocky

около 2 лет назад

Important: thunderbird security update

RLSA-2023:1337

rocky

около 2 лет назад

Important: firefox security update

RLSA-2023:1336

rocky

около 2 лет назад

Important: firefox security update

ELSA-2023-1407

oracle-oval

больше 2 лет назад

ELSA-2023-1407: thunderbird security update (IMPORTANT)

ELSA-2023-1403

oracle-oval

больше 2 лет назад

ELSA-2023-1403: thunderbird security update (IMPORTANT)