[SECURITY] Fedora 42 Update: thunderbird-149.0.1-2.fc42

Mozilla Thunderbird is a standalone mail and newsgroup client...

OESA-2025-1933 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. %if 0 %global mozdebugprefix /lib/debug %global mozdebugdir /lib/debug/ %global unamem %uname -m %global symbolsfilename -.en-US.-%uname.crashreporter-symbols.zip %global symbolsfilepath...

[SECURITY] Fedora 42 Update: thunderbird-128.12.0-1.fc42

Mozilla Thunderbird is a standalone mail and newsgroup client...

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Privilege escalation in Firefox Updater CVE-2025-2817 firefox: thunderbird: Unsafe attribute access during XPath parsing CVE-2025-4087 firefox: thunderbird: Process isolation bypass using...

The vulnerability in the full-screen notification mode of Mozilla Firefox, Mozilla Firefox ESR, and the email client Mozilla Thunderbird allows a hacker to perform spoofing attacks.

The vulnerability in the full-screen notification mode of Mozilla Firefox, Mozilla Firefox ESR, and the email client Mozilla Thunderbird is related to an improper limitation on the number of user interface layers or frames displayed. Exploiting this vulnerability allows a malicious actor to perfo...

RLSA-2024:4635 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: Mozilla: Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, and Thunderbird 115.13 CVE-2024-6604 Mozilla: Race condition in permission assignment CVE-2024-6601 Mozilla: Memory corruption in thread creation...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

Moderate: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.9.0. Security Fixes: nss: timing attack against RSA decryption CVE-2023-5388 Mozilla: Crash in NSS TLS method CVE-2024-0743 Mozilla: Leaking of encrypted email subjects to other...

[SECURITY] Fedora 38 Update: thunderbird-115.4.1-1.fc38

Mozilla Thunderbird is a standalone mail and newsgroup client...

The vulnerability of the Garbage Collector component in browsers like Firefox and Firefox ESR, as well as in the Thunderbird email client, allows a hacker to trigger a service failure.

The vulnerability of the Garbage Collector component in Firefox and Firefox ESR browsers, as well as in the Thunderbird email client, is related to memory leaks when performing operations on objects. Exploiting this vulnerability can allow an attacker to cause service interruptions...

RLSA-2023:0824 Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.8.0. Security Fixes: Mozilla: Arbitrary memory write via PKCS 12 in NSS CVE-2023-0767 Mozilla: Content security policy leak in violation reports using iframes CVE-2023-25728 Mozilla:...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

The vulnerability in the Resource Timing API interface of Firefox browsers, Firefox ESR, and the Thunderbird email client allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Resource Timing API interface in browsers such as Firefox, Firefox ESR, and the email client Thunderbird is related to improper neutralization of alternative syntax in XSS attacks. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthoriz...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

thunderbird security update

CentOS Errata and Security Advisory CESA-2019:2773 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

Important: Red Hat Security Advisory: thunderbird security update

An update for thunderbird is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

Mozilla: Buffer overflow when drawing and validating elements with ANGLE (MFSA 2017-22)

A buffer overflow occurs when drawing and validating elements with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. This vulnerability affects Firefox 56, Firefox ESR...

USN-3321-1: Thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, read uninitialized memory, obtain sensitive information or execute arbitrary...

[SECURITY] Fedora 24 Update: thunderbird-45.3.0-1.fc24

Mozilla Thunderbird is a standalone mail and newsgroup client...

Debian Security Advisory DSA 2996-1 (icedove - security update)

Multiple security issues have been found in Icedove, Debian's version of the Mozilla Thunderbird mail and news client: Multiple memory safety errors and use-after-frees may lead to the execution of arbitrary code or denial of service. OpenVAS Vulnerability Test $Id: deb2996.nasl 6750 2017-07-18...