ALSA-2022:5774

[ALSA-2022:5774] Important: thunderbird security update

Type:

security

Severity:

important

Release date:

2022-08-05

Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 91.12.0.
Security Fix(es):
* Mozilla: Memory safety bugs fixed in Firefox 103 and 102.1 (CVE-2022-2505)
* Mozilla: Directory indexes for bundled resources reflected URL parameters (CVE-2022-36318)
* Mozilla: Mouse Position spoofing with CSS transforms (CVE-2022-36319)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

ALSA-2022:5774

Updated packages listed below:

Architecture	Package	Checksum
aarch64	thunderbird-91.12.0-1.el8_6.alma.aarch64.rpm	b3d92b83d2754140fff16be4afed43443a1926d3aae647029b637743fb84edcb
ppc64le	thunderbird-91.12.0-1.el8_6.alma.ppc64le.rpm	4fbb45247645d933501b9f1de12de09f8a2943833f3e109661fb595796e33f61
x86_64	thunderbird-91.12.0-1.el8_6.alma.x86_64.rpm	db3768012bd47bcde15b3f68ec24a477ee978992603e7c0e41cb2a2304ef5235

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.