[ALSA-2022:7023] Important: thunderbird security update
Type:
security
Severity:
important
Release date:
2022-10-19
Description:
Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fix(es): * expat: a use-after-free in the doContent function in xmlparse.c (CVE-2022-40674) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 thunderbird-102.3.0-4.el8_6.alma.aarch64.rpm a1ebaa328f357e385192b3a867ae82c77affc9e70a96bb14db0186a5045a025a
ppc64le thunderbird-102.3.0-4.el8_6.alma.ppc64le.rpm f4cf7c8698c5700504b4e23d6e01a0dc1247b8660a2eb3b544d0cf2e8d968a0b
s390x thunderbird-102.3.0-4.el8_6.alma.s390x.rpm c0cf82f5a4343d61ba6a4b8f52092794e47f36524c03c3465edef0bcbc340865
x86_64 thunderbird-102.3.0-4.el8_6.alma.x86_64.rpm 596bb07c731640206d07087449c8847527c79830ce2b75810f8757cb378dcc2e
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.