RLSA-2025:8308 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details CVE-2025-5267 firefox: thunderbird: Potential local code execution ...

firefox: thunderbird: Script element events leaked cross-origin resource status

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Script elements loading cross-origin resources generate load and error events which can leak information enabling XS-Leaks attacks...

RHEL 8 : thunderbird (RHSA-2025:8628)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:8628 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Out-of-bounds access when resolving...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RHEL 9 : firefox (RHSA-2025:8293)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:8293 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox:...

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details CVE-2025-5267 firefox: thunderbird: Potential local code execution ...

ALSA-2025:8308 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: thunderbird: Clickjacking vulnerability could have led to leaking saved payment card details CVE-2025-5267 firefox: thunderbird: Potential local code execution ...

The vulnerability of the Shadow account management tool is related to insufficient checking of the status of shared resources. This allows a perpetrator to compromise data integrity and also cause service interruptions.

The vulnerability of the Shadow account management tool is related to insufficient checks on the status of the shared resource. Exploiting this vulnerability can allow an attacker to compromise data integrity and cause service failures...

pacemaker bug fix and enhancement update

An update is available for pacemaker. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Pacemaker cluster resource manager is a collection of technologies...

pacemaker bug fix and enhancement update

The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Bug Fixes and Enhancements: crmmon not able to detect resource-status when used in stop-operation of a Resource Agent during no...

ALBA-2021:1996 pacemaker bug fix and enhancement update

The Pacemaker cluster resource manager is a collection of technologies working together to maintain data integrity and application availability in the event of failures. Bug Fixes and Enhancements: crmmon not able to detect resource-status when used in stop-operation of a Resource Agent during no...

The vulnerability of the Flash Player software platform, which allows a violator to obtain confidential information

The vulnerability of the Flash Player software exists due to insufficient checks on the status of resources when they are used together. Exploiting this vulnerability can allow a malicious actor, operating remotely, to obtain confidential information...

The vulnerability of the Junos operating system, which allows a hacker to read, delete, or modify any files at will

The vulnerability of the Remote Procedure Call RPC function in the Junos operating system exists due to insufficient checking of resource status when resources are allowed to be shared among multiple processes. Exploiting this vulnerability could allow a malicious actor, operating locally, to rea...

The vulnerability of the Firefox browser, which allows a violator to trigger a service failure or cause other effects

The vulnerability of the Firefox browser exists due to insufficient checking of the status of resources when they can be used together. Exploiting this vulnerability allows a malicious actor to cause a service failure the inability to use the resource after it has been released or have other...

The vulnerability of Lexmark’s microprogramming software allows a hacker to bypass the authentication process.

The vulnerability of Lexmark’s microprogramming software exists due to insufficient checking of resource status when resources can be used concurrently. Exploiting this vulnerability allows a malicious actor to bypass authentication procedures by using incorrect detection of resource status...

The vulnerability of the Windows operating system, which allows a perpetrator to trigger a service failure or increase their privileges.

The vulnerability of the Pragmatic General Multicast protocol implementation in the Windows operating system exists due to insufficient checking of resource status when resources are allowed to be shared. Exploiting this vulnerability can allow a malicious actor to increase their privileges or...

The vulnerability of Google Chrome browser allows a perpetrator to trigger a service failure or cause other effects.

The vulnerability of the Google Chrome browser exists due to insufficient checking of the status of resources when they can be used concurrently. Exploiting this vulnerability could allow a malicious actor to cause service failures or potentially other unspecified effects due to the use of an...