Updated thunderbird packages fix security vulnerabilities
Publication date: 24 Oct 2020Modification date: 24 Oct 2020
Type: security
Affected Mageia releases : 7
CVE: CVE-2020-15683 , CVE-2020-15969
Description
Memory safety bugs fixed in Thunderbird 78.4. (CVE-2020-15683) Use-after-free in usersctp. (CVE-2020-15969)
References
- https://bugs.mageia.org/show_bug.cgi?id=27438
- https://www.thunderbird.net/en-US/thunderbird/78.3.3/releasenotes/
- https://www.thunderbird.net/en-US/thunderbird/78.4.0/releasenotes/
- https://www.mozilla.org/en-US/security/advisories/mfsa2020-47/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15683
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15969
SRPMS
7/core
- thunderbird-78.4.0-1.mga7
- thunderbird-l10n-78.4.0-1.mga7