Lucene search
RedHatRHSA-2024:4624HistoryJul 18, 2024 - 1:16 p.m.
(RHSA-2024:4624) Important: thunderbird security update
2024-07-1813:16:36
access.redhat.com
7
thunderbird
security update
race condition
memory corruption
memory safety bugs
cve-2024-6601
cve-2024-6603
cve-2024-6604
CVSS3
7.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Mozilla Thunderbird is a standalone mail and newsgroup client.
Security Fix(es):
-
Mozilla: Race condition in permission assignment (CVE-2024-6601)
-
Mozilla: Memory corruption in thread creation (CVE-2024-6603)
-
Mozilla: Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, and Thunderbird 115.13 (CVE-2024-6604)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 9 | x86_64 | thunderbird-debuginfo | < 115.13.0-3.el9_4 | thunderbird-debuginfo-115.13.0-3.el9_4.x86_64.rpm |
| RedHat | 9 | aarch64 | thunderbird | < 115.13.0-3.el9_4 | thunderbird-115.13.0-3.el9_4.aarch64.rpm |
| RedHat | 9 | s390x | thunderbird | < 115.13.0-3.el9_4 | thunderbird-115.13.0-3.el9_4.s390x.rpm |
| RedHat | 9 | s390x | thunderbird-debuginfo | < 115.13.0-3.el9_4 | thunderbird-debuginfo-115.13.0-3.el9_4.s390x.rpm |
| RedHat | 9 | ppc64le | thunderbird | < 115.13.0-3.el9_4 | thunderbird-115.13.0-3.el9_4.ppc64le.rpm |
| RedHat | 9 | aarch64 | thunderbird-debugsource | < 115.13.0-3.el9_4 | thunderbird-debugsource-115.13.0-3.el9_4.aarch64.rpm |
| RedHat | 9 | s390x | thunderbird-debugsource | < 115.13.0-3.el9_4 | thunderbird-debugsource-115.13.0-3.el9_4.s390x.rpm |
| RedHat | 9 | x86_64 | thunderbird-debugsource | < 115.13.0-3.el9_4 | thunderbird-debugsource-115.13.0-3.el9_4.x86_64.rpm |
| RedHat | 9 | aarch64 | thunderbird-debuginfo | < 115.13.0-3.el9_4 | thunderbird-debuginfo-115.13.0-3.el9_4.aarch64.rpm |
| RedHat | 9 | x86_64 | thunderbird | < 115.13.0-3.el9_4 | thunderbird-115.13.0-3.el9_4.x86_64.rpm |
Related
rocky
rocky
firefox security update
2024-07-15 12:18:45
thunderbird security update
2024-07-26 12:33:59
thunderbird security update
2024-07-26 12:33:00
redhat
redhat
(RHSA-2024:4500) Important: firefox security update
2024-07-11 11:26:07
(RHSA-2024:4517) Important: firefox security update
2024-07-11 15:02:15
(RHSA-2024:4610) Important: firefox security update
2024-07-18 11:14:13
osv
osv
Important: thunderbird security update
2024-07-18 00:00:00
Important: firefox security update
2024-07-11 00:00:00
Important: thunderbird security update
2024-07-26 12:33:00
nessus
nessus
Oracle Linux 9 : firefox (ELSA-2024-4500)
2024-07-12 00:00:00
RHEL 9 : thunderbird (RHSA-2024:4624)
2024-07-18 00:00:00
Rocky Linux 8 : thunderbird (RLSA-2024:4635)
2024-07-26 00:00:00
almalinux
almalinux
Important: firefox security update
2024-07-11 00:00:00
Important: thunderbird security update
2024-07-18 00:00:00
Important: thunderbird security update
2024-07-18 00:00:00
oraclelinux
oraclelinux
firefox security update
2024-07-11 00:00:00
firefox security update
2024-07-11 00:00:00
thunderbird security update
2024-07-18 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2024-07-21 05:28:06
Updated nss & firefox packages fix security vulnerabilities
2024-07-16 06:21:38
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0274)
2024-07-22 00:00:00
Mozilla Firefox ESR Security Update (mfsa_2024-30) - Windows
2024-07-11 00:00:00
Mozilla Thunderbird Security Update (mfsa_2024-31) - Windows
2024-07-19 00:00:00
slackware
slackware
[slackware-security] mozilla-thunderbird
2024-07-23 19:09:25
[slackware-security] mozilla-firefox
2024-07-10 17:52:20
redos
redos
ROS-20240920-11
2024-09-20 00:00:00
ROS-20240902-11
2024-09-02 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2024-07-22 00:00:00
Firefox vulnerabilities
2024-07-10 00:00:00
kaspersky
kaspersky
KLA70479 Multiple vulnerabilities in Mozilla Thunderbird
2024-07-15 00:00:00
KLA70405 Multiple vulnerabilities in Mozilla Firefox ESR
2024-07-09 00:00:00
KLA70478 Multiple vulnerabilities in Mozilla Thunderbird
2024-07-11 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Firefox ESR 115.13 — Mozilla
2024-07-09 00:00:00
Security Vulnerabilities fixed in Thunderbird 115.13 — Mozilla
2024-07-15 00:00:00
Security Vulnerabilities fixed in Thunderbird 128 — Mozilla
2024-07-11 00:00:00
nvd
nvd
cvelist
cvelist
debiancve
debiancve
redhatcve
redhatcve
ubuntucve
ubuntucve
alpinelinux
alpinelinux
vulnrichment
vulnrichment
cve
cve
wolfi
wolfi
CVE-2024-6603 vulnerabilities
2024-09-18 21:11:55
CVE-2024-6604 vulnerabilities
2024-09-18 21:11:55
CVE-2024-6601 vulnerabilities
2024-09-18 21:11:55
CVSS3
7.4
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Related for RHSA-2024:4624