Advisories ยป MGASA-2019-0201

Updated thunderbird packages fix security vulnerabilities

Publication date: 02 Jul 2019
Type: security
Affected Mageia releases : 6 , 7
CVE: CVE-2019-11707 , CVE-2019-11708

Description

Updated thunderbird packages fix security vulnerabilities:

Type confusion in Array.pop. (CVE-2019-11707)

Sandbox escape using Prompt:Open. (CVE-2019-11708)
                

References

SRPMS

6/core

7/core