Important: thunderbird security update

🗓️ 13 Jan 2025 00:00:00Reported by AlmaLinuxType

almalinux

almalinux🔗 errata.almalinux.org👁 30 Views

Thunderbird security update addresses memory safety bugs in multiple versions for enhanced protection.

Reporter	Title	Published	Views	Family All 457
FreeBSD	Mozilla -- Memory corruption bug	7 Jan 202500:00	–	freebsd
FreeBSD	Mozilla -- Memory safety bugs	7 Jan 202500:00	–	freebsd
ATTACKERKB	CVE-2025-0243	7 Jan 202516:15	–	attackerkb
ATTACKERKB	CVE-2025-0242	7 Jan 202516:15	–	attackerkb
Tenable Nessus	Amazon Linux 2 : thunderbird (ALAS-2025-2765)	26 Feb 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : thunderbird (ALAS-2025-2789)	10 Mar 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : firefox (ALASFIREFOX-2025-034)	26 Feb 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : firefox (ALASFIREFOX-2025-035)	1 Mar 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : firefox (ALSA-2025:0080)	10 Jan 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : firefox (ALSA-2025:0144)	10 Jan 202500:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
almalinux	8	x86_64	thunderbird	128.6.0-3.el8_10.alma.1	thunderbird-128.6.0-3.el8_10.alma.1.x86_64.rpm
almalinux	8	aarch64	thunderbird	128.6.0-3.el8_10.alma.1	thunderbird-128.6.0-3.el8_10.alma.1.aarch64.rpm
almalinux	8	ppc64le	thunderbird	128.6.0-3.el8_10.alma.1	thunderbird-128.6.0-3.el8_10.alma.1.ppc64le.rpm
almalinux	8	s390x	thunderbird	128.6.0-3.el8_10.alma.1	thunderbird-128.6.0-3.el8_10.alma.1.s390x.rpm

Source	Link
access	www.access.redhat.com/errata/RHSA-2025:0281
access	www.access.redhat.com/security/cve/CVE-2025-0242
access	www.access.redhat.com/security/cve/CVE-2025-0243
bugzilla	www.bugzilla.redhat.com/2336175
bugzilla	www.bugzilla.redhat.com/2336181
errata	www.errata.almalinux.org/8/ALSA-2025-0281.html

13 Jan 2025 20:20Current

7.8High risk

Vulners AI Score7.8

CVSS 3.16.5

EPSS0.1307

SSVC

mozilla thunderbird security update memory safety bugs cve-2025-0243 cve-2025-0242.