ALSA-2025:10246

[ALSA-2025:10246] Important: thunderbird security update

Type:

security

Severity:

important

Release date:

2025-07-07

Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.  

Security Fix(es):  

  * thunderbird: Unsolicited File Download, Disk Space Exhaustion, and Credential Leakage via mailbox:/// Links (CVE-2025-5986)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	thunderbird-128.12.0-1.el8_10.alma.1.aarch64.rpm	d86e917a41a058f89a67af034d311ea1a887485e6bfacbd3db3b2956b8731a2e
ppc64le	thunderbird-128.12.0-1.el8_10.alma.1.ppc64le.rpm	451b4b90f625c73f98e93f27729ac545b4044c4f2039a52038b80766a4118ecd
s390x	thunderbird-128.12.0-1.el8_10.alma.1.s390x.rpm	ce1b5c3e606e4d89ec145e37fb96bc05afcc7b34e83ed2130710f7e152fcfb28
x86_64	thunderbird-128.12.0-1.el8_10.alma.1.x86_64.rpm	b881857b9fd2a42ab70f2ee040c4494de88efdc266064b469a6cc4c2f88b9153

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.