Lucene search
RedHatRHSA-2019:2807HistorySep 17, 2019 - 10:40 a.m.
(RHSA-2019:2807) Important: thunderbird security update
2019-09-1710:40:44
access.redhat.com
24
0.009 Low
EPSS
Percentile
83.0%
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 60.9.0.
Security Fix(es):
-
Mozilla: Covert Content Attack on S/MIME encryption using a crafted multipart/alternative message (CVE-2019-11739)
-
Mozilla: Memory safety bugs fixed in Firefox 69, Firefox ESR 68.1, and Firefox ESR 60.9 (CVE-2019-11740)
-
Mozilla: Same-origin policy violation with SVG filters and canvas to steal cross-origin images (CVE-2019-11742)
-
Mozilla: XSS by breaking out of title and textarea elements using innerHTML (CVE-2019-11744)
-
Mozilla: Use-after-free while manipulating video (CVE-2019-11746)
-
Mozilla: Use-after-free while extracting a key value in IndexedDB (CVE-2019-11752)
-
Mozilla: Cross-origin access to unload event attributes (CVE-2019-11743)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 6 | x86_64 | thunderbird-debuginfo | < 60.9.0-1.el6_10 | thunderbird-debuginfo-60.9.0-1.el6_10.x86_64.rpm |
| RedHat | 6 | i686 | thunderbird | < 60.9.0-1.el6_10 | thunderbird-60.9.0-1.el6_10.i686.rpm |
| RedHat | 6 | ppc64 | thunderbird | < 60.9.0-1.el6_10 | thunderbird-60.9.0-1.el6_10.ppc64.rpm |
| RedHat | 6 | x86_64 | thunderbird | < 60.9.0-1.el6_10 | thunderbird-60.9.0-1.el6_10.x86_64.rpm |
| RedHat | 6 | s390x | thunderbird-debuginfo | < 60.9.0-1.el6_10 | thunderbird-debuginfo-60.9.0-1.el6_10.s390x.rpm |
| RedHat | 6 | i686 | thunderbird-debuginfo | < 60.9.0-1.el6_10 | thunderbird-debuginfo-60.9.0-1.el6_10.i686.rpm |
| RedHat | 6 | ppc64 | thunderbird-debuginfo | < 60.9.0-1.el6_10 | thunderbird-debuginfo-60.9.0-1.el6_10.ppc64.rpm |
| RedHat | 6 | s390x | thunderbird | < 60.9.0-1.el6_10 | thunderbird-60.9.0-1.el6_10.s390x.rpm |
Related
nessus
nessus
Mozilla Thunderbird < 68.1 Multiple Vulnerabilities
2019-09-18 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : thunderbird Multiple Vulnerabilities (NS-SA-2019-0190)
2019-10-15 00:00:00
CentOS 7 : thunderbird (CESA-2019:2773)
2019-09-19 00:00:00
osv
osv
thunderbird - security update
2019-09-18 00:00:00
thunderbird - security update
2019-09-15 00:00:00
firefox-esr - security update
2019-09-05 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2019-0285)
2022-01-28 00:00:00
CentOS Update for thunderbird CESA-2019:2773 centos7
2019-09-20 00:00:00
Ubuntu: Security Advisory (USN-4150-1)
2022-08-26 00:00:00
debian
debian
[SECURITY] [DLA 1926-1] thunderbird security update
2019-09-18 12:31:05
[SECURITY] [DSA 4523-1] thunderbird security update
2019-09-15 21:16:22
[SECURITY] [DLA 1910-1] firefox-esr security update
2019-09-06 09:37:16
mozilla
mozilla
Security vulnerabilities fixed in - Thunderbird 60.9 — Mozilla
2019-09-06 00:00:00
Security vulnerabilities fixed in - Thunderbird 68.1 — Mozilla
2019-09-11 00:00:00
Security vulnerabilities fixed in Firefox ESR 60.9 — Mozilla
2019-09-03 00:00:00
oraclelinux
oraclelinux
thunderbird security update
2019-09-17 00:00:00
thunderbird security update
2019-09-19 00:00:00
thunderbird security update
2019-09-16 00:00:00
mageia
mageia
Updated thunderbird packages fix security vulnerabilities
2019-09-15 15:11:55
Updated thunderbird packages fix security vulnerabilities
2019-09-21 14:07:28
Updated firefox packages fix security vulnerabilities
2019-09-12 22:09:52
kaspersky
kaspersky
KLA11560 Multiple vulnerabilities in Mozilla Thunderbird
2019-09-11 00:00:00
KLA11561 Multiple vulnerabilities in Mozilla Thunderbird
2019-09-06 00:00:00
KLA11545 Multiple vulnerabilities in Mozilla Firefox ESR
2019-09-03 00:00:00
amazon
amazon
Important: thunderbird
2019-09-30 22:54:00
redhat
redhat
(RHSA-2019:2773) Important: thunderbird security update
2019-09-16 08:51:45
(RHSA-2019:2774) Important: thunderbird security update
2019-09-16 11:20:50
(RHSA-2019:2694) Important: firefox security update
2019-09-10 06:57:37
centos
centos
thunderbird security update
2019-09-18 18:40:25
firefox security update
2019-09-18 21:10:48
firefox security update
2019-09-17 21:47:04
ubuntu
ubuntu
Thunderbird vulnerabilities
2019-10-08 00:00:00
Firefox vulnerabilities
2019-09-04 00:00:00
Firefox regression
2019-10-08 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package thunderbird version 68.1.2-alt1
2019-10-13 00:00:00
Security fix for the ALT Linux 10 package firefox-esr version 68.1.0-alt1
2019-09-04 00:00:00
gentoo
gentoo
Mozilla Firefox: Multiple vulnerabilities
2019-11-25 00:00:00
ibm
ibm
archlinux
archlinux
[ASA-201909-2] firefox: multiple issues
2019-09-04 00:00:00
threatpost
threatpost
Firefox 69 Release Kills Default Tracking Cookies, Flash Support
2019-09-03 18:18:26
freebsd
freebsd
mozilla -- multiple vulnerabilities
2019-09-03 00:00:00
cve
cve
veracode
veracode
Information Disclosure
2019-09-20 00:32:08
Use-After-Free
2019-09-11 00:06:45
Arbitrary Code Execution (ACE)
2019-09-11 00:06:44
nvd
nvd
ubuntucve
ubuntucve
debiancve
debiancve
cvelist
cvelist
redhatcve
redhatcve
prion
prion
Design/Logic Flaw
2019-09-27 18:15:00
Design/Logic Flaw
2019-09-27 18:15:00
Design/Logic Flaw
2019-09-27 18:15:00
suse
suse
Security update for MozillaThunderbird (important)
2019-10-04 00:00:00
Security update for MozillaThunderbird (important)
2019-10-04 00:00:00
Security update for MozillaFirefox (important)
2019-10-06 00:00:00
alpinelinux
alpinelinux