Scientific Linux alert SLSA-2017:2534-1 (thunderbird)
| From: | Pat Riehecky <riehecky@fnal.gov> | |
| To: | <scientific-linux-errata@listserv.fnal.gov> | |
| Subject: | Security ERRATA Important: thunderbird on SL6.x, SL7.x i386/x86_64 | |
| Date: | Thu, 24 Aug 2017 13:50:28 +0000 | |
| Message-ID: | <20170824135028.5529.69836@slpackages.fnal.gov> |
Synopsis: Important: thunderbird security update Advisory ID: SLSA-2017:2534-1 Issue Date: 2017-08-24 CVE Numbers: CVE-2017-7753 CVE-2017-7779 CVE-2017-7784 CVE-2017-7785 CVE-2017-7786 CVE-2017-7787 CVE-2017-7791 CVE-2017-7792 CVE-2017-7800 CVE-2017-7801 CVE-2017-7802 CVE-2017-7803 CVE-2017-7807 CVE-2017-7809 -- This update upgrades Thunderbird to version 52.3.0. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-7779, CVE-2017-7800, CVE-2017-7801, CVE-2017-7753, CVE-2017-7784, CVE-2017-7785, CVE-2017-7786, CVE-2017-7787, CVE-2017-7792, CVE-2017-7802, CVE-2017-7807, CVE-2017-7809, CVE-2017-7791, CVE-2017-7803) -- SL6 x86_64 thunderbird-52.3.0-1.el6_9.x86_64.rpm thunderbird-debuginfo-52.3.0-1.el6_9.x86_64.rpm i386 thunderbird-52.3.0-1.el6_9.i686.rpm thunderbird-debuginfo-52.3.0-1.el6_9.i686.rpm SL7 x86_64 thunderbird-52.3.0-1.el7_4.x86_64.rpm thunderbird-debuginfo-52.3.0-1.el7_4.x86_64.rpm - Scientific Linux Development Team