ALSA-2023:3588

[ALSA-2023:3588] Important: thunderbird security update

Type:

security

Severity:

important

Release date:

2023-06-21

Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 102.12.0.

Security Fix(es):

* Mozilla: Click-jacking certificate exceptions through rendering lag (CVE-2023-34414)
* Mozilla: Memory safety bugs fixed in Firefox 114 and Firefox ESR 102.12 (CVE-2023-34416)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	thunderbird-102.12.0-1.el8_8.alma.aarch64.rpm	0a3f56f13ccd2587f5380c403725ac1334c13cbf74d9f26d6d5ccfdeecabbcbb
aarch64	thunderbird-102.12.0-1.el8_8.alma.plus.aarch64.rpm	0e4b34717658d67ec4684ae5c4bd396b6c7412f419fa4e903dac998a5347bafe
ppc64le	thunderbird-102.12.0-1.el8_8.alma.ppc64le.rpm	a2364971fdad3c12424cb5591d215c0bfbb58c1d7c42b3f61091357f243f2c9c
ppc64le	thunderbird-102.12.0-1.el8_8.alma.plus.ppc64le.rpm	f45d124ee8cb74eef5f357d7513e7e8f182332169de2de444383dae674631010
s390x	thunderbird-102.12.0-1.el8_8.alma.plus.s390x.rpm	14b947237fde347513dc6427183bd996c3e518233b5c6a2dda590dc11377e6de
s390x	thunderbird-102.12.0-1.el8_8.alma.s390x.rpm	31a739b51ed9c10dfd6240d04446df03d5eaffe6b41b91de04e0047e4d5902cc
x86_64	thunderbird-102.12.0-1.el8_8.alma.plus.x86_64.rpm	28856597eac932bc81142a8f62feecfe7c5ee8f391f1e3b6d86368e507e107d2
x86_64	thunderbird-102.12.0-1.el8_8.alma.x86_64.rpm	aacf0754bf9aff2c1718a2776e307539fdaceecdb5579d50ee8b6d252eb71440

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.