ALSA-2023:3588

[ALSA-2023:3588] Important: thunderbird security update

Type:

security

Severity:

important

Release date:

2023-06-21

Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 102.12.0.

Security Fix(es):

* Mozilla: Click-jacking certificate exceptions through rendering lag (CVE-2023-34414)
* Mozilla: Memory safety bugs fixed in Firefox 114 and Firefox ESR 102.12 (CVE-2023-34416)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	thunderbird-102.12.0-1.el8_8.alma.aarch64.rpm	0a3f56f13ccd2587f5380c403725ac1334c13cbf74d9f26d6d5ccfdeecabbcbb
ppc64le	thunderbird-102.12.0-1.el8_8.alma.ppc64le.rpm	a2364971fdad3c12424cb5591d215c0bfbb58c1d7c42b3f61091357f243f2c9c
s390x	thunderbird-102.12.0-1.el8_8.alma.s390x.rpm	31a739b51ed9c10dfd6240d04446df03d5eaffe6b41b91de04e0047e4d5902cc
x86_64	thunderbird-102.12.0-1.el8_8.alma.x86_64.rpm	aacf0754bf9aff2c1718a2776e307539fdaceecdb5579d50ee8b6d252eb71440

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.