Description:
Mozilla Thunderbird is a standalone mail and newsgroup client.
Security Fix(es):
* firefox: thunderbird: Sandbox escape due to use-after-free in the Graphics: Canvas2D component (CVE-2025-10527)
* firefox: thunderbird: Incorrect boundary conditions in the JavaScript: GC component (CVE-2025-10532)
* firefox: thunderbird: Sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component (CVE-2025-10528)
* firefox: thunderbird: Same-origin policy bypass in the Layout component (CVE-2025-10529)
* firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143 (CVE-2025-10537)
* firefox: thunderbird: Information disclosure in the Networking: Cache component (CVE-2025-10536)
* firefox: thunderbird: Integer overflow in the SVG component (CVE-2025-10533)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
thunderbird-140.3.0-1.el10_0.alma.1.aarch64.rpm |
fa3d84ab76a09b71cdb59b0ef7e2319841fc54fd863126c42c5e091814a3813b |
| ppc64le |
thunderbird-140.3.0-1.el10_0.alma.1.ppc64le.rpm |
4d1faf68a19ca2dc2d915f2ad2856b53ec4b0027749c4d41d73241938295a6b4 |
| s390x |
thunderbird-140.3.0-1.el10_0.alma.1.s390x.rpm |
06eaebd5e69d5f30b396ccb638406c1cde3eeb2324aae4736fcbdd1f0a3b27bd |
| x86_64 |
thunderbird-140.3.0-1.el10_0.alma.1.x86_64.rpm |
e9597e03998cb60b330211ed27d3856a22d9f7e40ebd19006ba1e3bae2615fe9 |
| x86_64_v2 |
thunderbird-140.3.0-1.el10_0.alma.1.x86_64_v2.rpm |
ea7a248c690f797e2e9a5016828f275298197b0209af8dd2772bfb3a771f9e5c |
