Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 78.9.1.
Security Fix(es):
Mozilla: An attacker may use Thunderbird’s OpenPGP key refresh mechanism to poison an existing key (CVE-2021-23991)
Mozilla: A crafted OpenPGP key with an invalid user ID could be used to confuse the user (CVE-2021-23992)
Mozilla: Inability to send encrypted OpenPGP email after importing a crafted OpenPGP key (CVE-2021-23993)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
almalinux | 8 | x86_64 | thunderbird | < 78.9.1-1.el8_3.alma | thunderbird-78.9.1-1.el8_3.alma.x86_64.rpm |