Description:
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.13.0.
Security Fix(es):
* Mozilla: Use-after-free in WebRTC certificate generation (CVE-2023-37201)
* Mozilla: Potential use-after-free from compartment mismatch in SpiderMonkey (CVE-2023-37202)
* Mozilla: Memory safety bugs fixed in Firefox 115, Firefox ESR 102.13, and Thunderbird 102.13 (CVE-2023-37211)
* Mozilla: Fullscreen notification obscured (CVE-2023-37207)
* Mozilla: Lack of warning when opening Diagcab files (CVE-2023-37208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
thunderbird-102.13.0-2.el8_8.alma.plus.aarch64.rpm |
386cf97a77b7f208774a628a82122560c2c9461e79421c45a034139b5aa230d6 |
| aarch64 |
thunderbird-102.13.0-2.el8_8.alma.aarch64.rpm |
7e6d72dad250d07a987f6551ad8081fdb1fa86a8298ef51c2a2abc1f92170096 |
| ppc64le |
thunderbird-102.13.0-2.el8_8.alma.plus.ppc64le.rpm |
30c61d253181b5bbeecbbf2c6a9485dec83949e0a6bc3431c7f5f20f65413d07 |
| ppc64le |
thunderbird-102.13.0-2.el8_8.alma.ppc64le.rpm |
9195e18afe16bb95b74d1b5df6b2ac86dd5b8ed4ab2aec8885149ee57f0396e4 |
| s390x |
thunderbird-102.13.0-2.el8_8.alma.plus.s390x.rpm |
6a061180e331564ebc4a3be171521bbdeab5873d5ac116ab1217937976e50c33 |
| s390x |
thunderbird-102.13.0-2.el8_8.alma.s390x.rpm |
95af641a1478d238f532beb51b38ff7be8e61832b97334e399a8601174237873 |
| x86_64 |
thunderbird-102.13.0-2.el8_8.alma.plus.x86_64.rpm |
38a7f1fbe1f0231f49849e2d83471d521c0480fc93115a9c55fcdb71798921ba |
| x86_64 |
thunderbird-102.13.0-2.el8_8.alma.x86_64.rpm |
c14404d32b36cb56181a0addcab0890e9772e04593826f662f0b1d2589119218 |
