1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2010-5539

[FEDORA-2010-5539] Fedora 12: thunderbird, sunbird

Severity High
Affected Packages 2
CVEs 4
Info Packages References Vulnerabilities

Update to new upstream Thunderbird version 3.0.4, fixing multiple security
issues detailed in the upstream advisories: http://www.mozilla.org/security
/known-vulnerabilities/thunderbird30.html#thunderbird3.0.4 Update also
includes sunbird package rebuilt against new version of Thunderbird.
CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176

Package Affected Version
pkg:rpm/fedora/thunderbird?distro=fedora-12 < 3.0.4.1.fc12
pkg:rpm/fedora/sunbird?distro=fedora-12 < 1.0.0.21.20090916hg.fc12
ID
FEDORA-2010-5539
Severity
high
Severity from
CVE-2010-0174
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2010-5539
Published
2010-04-01T01:55:06
(14 years ago)
Modified
2010-04-01T01:55:06
(14 years ago)
Rights
Copyright 2010 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 578149 Bug #578149 - CVE-2010-0175 Mozilla remote code execution with use-after-free in nsTreeSelection https://bugzilla.redhat.com/show_bug.cgi?id=578149
Bugzilla 578147 Bug #578147 - CVE-2010-0174 Mozilla crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=578147
Bugzilla 578150 Bug #578150 - CVE-2010-0176 Mozilla Dangling pointer vulnerability in nsTreeContentView https://bugzilla.redhat.com/show_bug.cgi?id=578150
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/thunderbird?distro=fedora-12 fedora thunderbird < 3.0.4.1.fc12 fedora-12
Affected pkg:rpm/fedora/sunbird?distro=fedora-12 fedora sunbird < 1.0.0.21.20090916hg.fc12 fedora-12
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date