Gentoo FoundationMGASA-2015-0387Updated thunderbird packages fix security vulnerabilities
0.146 Low
EPSS
Percentile
95.8%
Updated thunderbird packages fix security vulnerabilities: Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird (CVE-2015-4500, CVE-2015-4509, CVE-2015-4517, CVE-2015-4521, CVE-2015-4522, CVE-2015-7174, CVE-2015-7175, CVE-2015-7176, CVE-2015-7177, CVE-2015-7180). Two information leak flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to disclose sensitive information or, in certain cases, crash (CVE-2015-4519, CVE-2015-4520).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 5 | noarch | thunderbird | < 38.3.0-1 | thunderbird-38.3.0-1.mga5 |
| Mageia | 5 | noarch | thunderbird-l10n | < 38.3.0-1 | thunderbird-l10n-38.3.0-1.mga5 |
References
bugs.mageia.org/show_bug.cgi?id=16871
rhn.redhat.com/errata/RHSA-2015-1852.html
www.mozilla.org/en-US/security/advisories/mfsa2015-106/
www.mozilla.org/en-US/security/advisories/mfsa2015-110/
www.mozilla.org/en-US/security/advisories/mfsa2015-111/
www.mozilla.org/en-US/security/advisories/mfsa2015-112/
www.mozilla.org/en-US/security/advisories/mfsa2015-96/
www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/
Related
