Lucene search
RedHatRHSA-2020:0919HistoryMar 23, 2020 - 7:49 a.m.
(RHSA-2020:0919) Important: thunderbird security update
2020-03-2307:49:48
access.redhat.com
47
0.526 Medium
EPSS
Percentile
97.6%
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 68.6.0.
Security Fix(es):
-
Mozilla: Use-after-free when removing data about origins (CVE-2020-6805)
-
Mozilla: BodyStream::OnInputStreamReady was missing protections against state confusion (CVE-2020-6806)
-
Mozilla: Use-after-free in cubeb during stream destruction (CVE-2020-6807)
-
Mozilla: Memory safety bugs fixed in Firefox 74 and Firefox ESR 68.6 (CVE-2020-6814)
-
Mozilla: Out of bounds reads in sctp_load_addresses_from_init (CVE-2019-20503)
-
Mozilla: Devtools’ ‘Copy as cURL’ feature did not fully escape website-controlled data, potentially leading to command injection (CVE-2020-6811)
-
Mozilla: The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission (CVE-2020-6812)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 8 | x86_64 | thunderbird-debuginfo | < 68.6.0-1.el8_1 | thunderbird-debuginfo-68.6.0-1.el8_1.x86_64.rpm |
| RedHat | 8 | ppc64le | thunderbird | < 68.6.0-1.el8_1 | thunderbird-68.6.0-1.el8_1.ppc64le.rpm |
| RedHat | 8 | ppc64le | thunderbird-debuginfo | < 68.6.0-1.el8_1 | thunderbird-debuginfo-68.6.0-1.el8_1.ppc64le.rpm |
| RedHat | 8 | ppc64le | thunderbird-debugsource | < 68.6.0-1.el8_1 | thunderbird-debugsource-68.6.0-1.el8_1.ppc64le.rpm |
| RedHat | 8 | x86_64 | thunderbird | < 68.6.0-1.el8_1 | thunderbird-68.6.0-1.el8_1.x86_64.rpm |
| RedHat | 8 | x86_64 | thunderbird-debugsource | < 68.6.0-1.el8_1 | thunderbird-debugsource-68.6.0-1.el8_1.x86_64.rpm |
Related
debian
debian
[SECURITY] [DSA 4639-1] firefox-esr security update
2020-03-11 19:17:38
[SECURITY] [DLA 2140-1] firefox-esr security update
2020-03-11 21:34:36
[SECURITY] [DSA 4642-1] thunderbird security update
2020-03-19 22:32:44
redhat
redhat
(RHSA-2020:0820) Important: firefox security update
2020-03-16 10:34:23
(RHSA-2020:0905) Important: thunderbird security update
2020-03-19 11:09:44
(RHSA-2020:0815) Important: firefox security update
2020-03-16 08:03:05
openvas
openvas
Mozilla Thunderbird Security Advisory (MFSA2020-10) - Mac OS X
2020-03-16 00:00:00
Debian: Security Advisory (DSA-4642-1)
2020-03-21 00:00:00
CentOS: Security Advisory for firefox (CESA-2020:0816)
2020-03-26 00:00:00
nessus
nessus
Scientific Linux Security Update : thunderbird on SL7.x x86_64 (20200319)
2020-03-20 00:00:00
Debian DSA-4642-1 : thunderbird - security update
2020-03-23 00:00:00
RHEL 6 : thunderbird (RHSA-2020:0914)
2020-03-24 00:00:00
centos
centos
thunderbird security update
2020-03-25 19:17:21
firefox security update
2020-03-25 19:19:48
thunderbird security update
2020-03-25 19:18:41
amazon
amazon
Important: thunderbird
2020-04-20 20:48:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 68.6 — Mozilla
2020-03-10 00:00:00
Security Vulnerabilities fixed in Firefox ESR 68.6 — Mozilla
2020-03-10 00:00:00
Security Vulnerabilities fixed in Firefox 74 — Mozilla
2020-03-10 00:00:00
oraclelinux
oraclelinux
firefox security update
2020-03-16 00:00:00
thunderbird security update
2020-03-20 00:00:00
thunderbird security update
2020-07-07 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package firefox-esr version 68.6.0-alt1
2020-03-10 00:00:00
Security fix for the ALT Linux 10 package thunderbird version 68.6.0-alt1
2020-03-14 00:00:00
slackware
slackware
[slackware-security] mozilla-thunderbird
2020-03-13 21:47:41
[slackware-security] mozilla-firefox
2020-03-10 20:37:32
mageia
mageia
Updated firefox packages fix security vulnerabilities
2020-03-14 11:35:35
Updated thunderbird packages fix security vulnerabilities
2020-03-14 11:35:35
osv
osv
thunderbird - security update
2020-03-20 00:00:00
firefox-esr - security update
2020-03-11 00:00:00
firefox-esr - security update
2020-03-11 00:00:00
suse
suse
Security update for MozillaThunderbird (important)
2020-03-22 00:00:00
Security update for MozillaFirefox (important)
2020-03-14 00:00:00
kaspersky
kaspersky
KLA11701 Multiple vulnerabilities in Mozilla Thunderbird
2020-03-10 00:00:00
KLA11688 Multiple vulnerabilities in Mozilla Firefox ESR
2020-03-10 00:00:00
KLA11691 Multiple vulnerabilities in Mozilla Firefox
2020-02-12 00:00:00
archlinux
archlinux
[ASA-202003-11] thunderbird: multiple issues
2020-03-16 00:00:00
[ASA-202003-8] firefox: multiple issues
2020-03-11 00:00:00
ubuntu
ubuntu
Firefox vulnerabilities
2020-03-11 00:00:00
Thunderbird vulnerabilities
2020-04-13 00:00:00
threatpost
threatpost
Firefox Bug Opens iPhone AirPods to Third-Party Snooping
2020-03-10 18:14:15
Firefox Bug Opens iPhone AirPods to Third-Party Snooping
2020-03-10 18:14:15
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2020-03-12 00:00:00
Mozilla Thunderbird: Multiple vulnerabilities
2020-03-14 00:00:00
cve
cve
redhatcve
redhatcve
cbl_mariner
cbl_mariner
CVE-2019-20503 affecting package usrsctp for versions less than 0.9.5.0-1
2022-06-26 03:29:33
CVE-2019-20503 affecting package usrsctp for versions less than 0.9.5.0-1
2024-03-19 17:21:46
cvelist
cvelist
prion
prion
Design/Logic Flaw
2020-03-25 22:15:00
Design/Logic Flaw
2020-03-25 22:15:00
Out-of-bounds
2020-03-06 20:15:00
alpinelinux
alpinelinux
ubuntucve
ubuntucve
nvd
nvd
veracode
veracode
Information Disclosure
2020-03-18 00:55:41
Denial Of Service (DoS)
2020-08-06 21:30:22
Denial Of Service (DoS)
2020-03-18 00:55:39
debiancve
debiancve
checkpoint_advisories
checkpoint_advisories
Mozilla Firefox Memory Corruption (CVE-2020-6806)
2020-12-23 00:00:00