Description:
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.13.0.
Security Fix(es):
* Mozilla: Use-after-free in WebRTC certificate generation (CVE-2023-37201)
* Mozilla: Potential use-after-free from compartment mismatch in SpiderMonkey (CVE-2023-37202)
* Mozilla: Memory safety bugs fixed in Firefox 115, Firefox ESR 102.13, and Thunderbird 102.13 (CVE-2023-37211)
* Mozilla: Fullscreen notification obscured (CVE-2023-37207)
* Mozilla: Lack of warning when opening Diagcab files (CVE-2023-37208)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
thunderbird-102.13.0-2.el9_2.alma.plus.aarch64.rpm |
07623d92a5bbbd0bb383de43c0d4bb7eaf1723106a08f1a113a561b180082ad7 |
| aarch64 |
thunderbird-102.13.0-2.el9_2.alma.aarch64.rpm |
5e730a73223dcaf9321c01cf3a56c6857371480325cf7b8307ad66f0a7386df7 |
| ppc64le |
thunderbird-102.13.0-2.el9_2.alma.plus.ppc64le.rpm |
1acfa58e8eedab0122389fe5c07e3d7fa8cb787ccfd655164f64036dd57b289b |
| ppc64le |
thunderbird-102.13.0-2.el9_2.alma.ppc64le.rpm |
29e80c9994908d59801a7c06a65aa9761ae0dcbab64bc008218f358e5176ea80 |
| s390x |
thunderbird-102.13.0-2.el9_2.alma.s390x.rpm |
313c2cbd149ac89b99e382da31f087366f89fc160980f5965e77f523092b3dd9 |
| s390x |
thunderbird-102.13.0-2.el9_2.alma.plus.s390x.rpm |
80e035726e776eb6e74a6d8482f6b8dbf816f99dcb99e792dbee7bcb19f0e032 |
| x86_64 |
thunderbird-102.13.0-2.el9_2.alma.x86_64.rpm |
cceaa054b79c567f51ad8f11c432e39a76c1d04e521b484b5711d3cdeef5b934 |
| x86_64 |
thunderbird-102.13.0-2.el9_2.alma.plus.x86_64.rpm |
d1636e20093d33a5ca8fc82051c3f5104c7c0d26a90e12e4ee1dbfc71bdfee62 |
