[ALSA-2022:7026] Important: thunderbird security update
Type:
security
Severity:
important
Release date:
2022-10-19
Description:
Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.3.0. Security Fix(es): * expat: a use-after-free in the doContent function in xmlparse.c (CVE-2022-40674) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 thunderbird-102.3.0-4.el9_0.alma.plus.aarch64.rpm 2d4d3d56049c6c15138a80bceaed7381e83da5c24d3f161b82c138cce452a9c2
ppc64le thunderbird-102.3.0-4.el9_0.alma.plus.ppc64le.rpm 03e4636fee87eea18300667e9855e05a0b3623b597aad4f554cf22123ec2ce3e
s390x thunderbird-102.3.0-4.el9_0.alma.plus.s390x.rpm b50f8f0920dc62156f022279a21344e96c157528cc421b7bfc23e0c04ca44ae6
x86_64 thunderbird-102.3.0-4.el9_0.alma.plus.x86_64.rpm fb5794d053dffd7574c6467a3415e90df71253cbecc9cc6e4fbce770af4fee69
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.