Lucene search
AlmaLinuxALSA-2021:3838HistoryOct 13, 2021 - 9:04 a.m.
Important: thunderbird security update
2021-10-1309:04:24
errata.almalinux.org
20
0.009 Low
EPSS
Percentile
82.7%
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 91.2.0.
Security Fix(es):
-
Mozilla: Use-after-free in MessageTask (CVE-2021-38496)
-
Mozilla: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 (CVE-2021-38500)
-
Mozilla: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 (CVE-2021-38501)
-
Mozilla: Downgrade attack on SMTP STARTTLS connections (CVE-2021-38502)
-
rust-crossbeam-deque: race condition may lead to double free (CVE-2021-32810)
-
Mozilla: Validation message could have been overlaid on another origin (CVE-2021-38497)
-
Mozilla: Use-after-free of nsLanguageAtomService object (CVE-2021-38498)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| almalinux | 8 | x86_64 | thunderbird | < 91.2.0-1.el8_4.alma | thunderbird-91.2.0-1.el8_4.alma.x86_64.rpm |
Related
openvas
openvas
CentOS: Security Advisory for thunderbird (CESA-2021:3841)
2021-11-18 00:00:00
Mageia: Security Advisory (MGASA-2021-0478)
2022-01-28 00:00:00
Mozilla Thunderbird Security Advisories (MFSA2021-47, MFSA2021-49) - Windows
2022-11-22 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2021-10-25 00:00:00
thunderbird security update
2021-10-15 00:00:00
firefox security update
2021-10-25 00:00:00
kaspersky
kaspersky
KLA12320 Multiple vulnerabilities in Mozilla Thunderbird
2021-10-06 00:00:00
KLA12305 Multiple vulnerabilities in Mozilla Firefox ESR
2021-10-05 00:00:00
KLA12303 Multiple vulnerabilities in Mozilla Firefox
2021-10-05 00:00:00
nessus
nessus
CentOS 7 : thunderbird (CESA-2021:3841)
2021-11-17 00:00:00
Oracle Linux 8 : thunderbird (ELSA-2021-3838)
2021-10-15 00:00:00
RHEL 7 : thunderbird (RHSA-2021:3841)
2021-10-14 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2021-10-13 22:39:52
Updated firefox packages fix security vulnerability
2021-10-08 07:27:53
redhat
redhat
(RHSA-2021:3839) Important: thunderbird security update
2021-10-13 09:04:49
(RHSA-2021:3841) Important: thunderbird security update
2021-10-13 09:08:36
(RHSA-2021:3838) Important: thunderbird security update
2021-10-13 09:04:24
osv
osv
Important: thunderbird security update
2021-10-13 09:04:24
Important: firefox security update
2021-10-11 07:50:46
firefox vulnerabilities
2021-10-07 08:22:30
centos
centos
thunderbird security update
2021-11-17 15:26:33
firefox security update
2021-11-17 15:24:04
rocky
rocky
thunderbird security update
2021-10-13 09:04:24
firefox security update
2021-10-11 07:50:46
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 91.2.1-alt1
2021-11-02 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 91.2.0-alt1
2021-11-02 00:00:00
mozilla
mozilla
Security Vulnerabilities fixed in Thunderbird 91.2 — Mozilla
2021-10-06 00:00:00
Security Vulnerabilities fixed in Firefox ESR 91.2 — Mozilla
2021-10-05 00:00:00
Security Vulnerabilities fixed in Firefox 93 — Mozilla
2021-10-05 00:00:00
ubuntu
ubuntu
Thunderbird vulnerabilities
2021-11-03 00:00:00
Firefox vulnerabilities
2021-10-07 00:00:00
almalinux
almalinux
Important: firefox security update
2021-10-11 07:50:46
debian
debian
[SECURITY] [DSA 4981-1] firefox-esr security update
2021-10-06 16:37:03
[SECURITY] [DLA 2782-1] firefox-esr security update
2021-10-11 15:02:40
suse
suse
Security update for MozillaFirefox (important)
2021-10-18 00:00:00
Security update for MozillaFirefox (important)
2021-10-11 00:00:00
Security update for MozillaFirefox (important)
2021-10-16 00:00:00
prion
prion
Authentication flaw
2021-11-03 01:15:00
Memory corruption
2021-11-03 01:15:00
Memory corruption
2021-11-03 01:15:00
cve
cve
nvd
nvd
redhatcve
redhatcve
debiancve
debiancve
veracode
veracode
Downgrade Attack
2021-10-18 14:16:18
Denial Of Service (DoS)
2021-10-07 10:16:56
Arbitrary Code Execution
2021-10-07 10:16:58
alpinelinux
alpinelinux
ubuntucve
ubuntucve
cvelist
cvelist
cnvd
cnvd
Mozilla Firefox Post-release Reuse Vulnerability (CNVD-2021-90095)
2021-10-10 00:00:00
Mozilla Thunderbird Buffer Overflow Vulnerability (CNVD-2021-90093)
2021-10-27 00:00:00
Mozilla Firefox Access Control Error Vulnerability (CNVD-2021-90094)
2021-10-12 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: rust-dua-cli-2.11.1-3.fc34
2021-08-16 01:17:51
[SECURITY] Fedora 34 Update: rust-askalono-cli-0.4.3-5.fc34
2021-08-16 01:17:42
[SECURITY] Fedora 34 Update: rust-tokei-12.0.4-7.fc34
2021-08-16 01:18:03
github
github
crossbeam-deque Data Race before v0.7.4 and v0.8.1
2021-08-25 21:01:15
amazon
amazon
Important: thunderbird
2022-07-06 03:17:00