[RHSA-2022:7023] thunderbird security update
Severity
Important
Affected Packages
4
CVEs
1
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.3.0.
Security Fix(es):
- expat: a use-after-free in the doContent function in xmlparse.c (CVE-2022-40674)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
| Package | Affected Version |
|---|---|
 pkg:rpm/redhat/thunderbird?arch=x86_64&distro=redhat-8.6
|
< 102.3.0-4.el8_6 |
|
pkg:rpm/redhat/thunderbird?arch=s390x&distro=redhat-8.6
|
< 102.3.0-4.el8_6 |
|
pkg:rpm/redhat/thunderbird?arch=ppc64le&distro=redhat-8.6
|
< 102.3.0-4.el8_6 |
|
pkg:rpm/redhat/thunderbird?arch=aarch64&distro=redhat-8.6
|
< 102.3.0-4.el8_6 |
- ID
- RHSA-2022:7023
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2022:7023
- Published
-
2022-10-18T00:00:00
(23 months ago) - Modified
-
2022-10-18T00:00:00
(23 months ago) - Rights
- Copyright 2022 Red Hat, Inc.
- Other Advisories
-
-
ALAS-2022-1654
-
ALAS2-2022-1877
-
ALAS2-2022-1900
-
ALPINE:CVE-2022-40674
-
ALSA-2022:6838
-
ALSA-2022:6878
-
ALSA-2022:7020
-
ALSA-2022:7023
-
ALSA-2022:7024
-
ALSA-2023:3068
-
DSA-5236-1
-
ELSA-2022-6834
-
ELSA-2022-6838
-
ELSA-2022-6878
-
ELSA-2022-6997
-
ELSA-2022-6998
-
ELSA-2022-7020
-
ELSA-2022-7023
-
ELSA-2022-7024
-
ELSA-2022-7026
-
ELSA-2022-9962
-
ELSA-2022-9967
-
FEDORA-2022-15ec504440
-
FEDORA-2022-c22feb71ba
-
FEDORA-2022-c68d90efc3
-
FEDORA-2022-d93b3bd8b9
-
FEDORA-2022-dcb1d7bcb1
-
FREEBSD:0A0670A1-3E1A-11ED-B48B-E0D55E2A8BF9
-
GLSA-202209-24
-
GLSA-202211-06
-
MFSA-2022-47
-
MS:CVE-2022-40674
-
RHSA-2022:6834
-
RHSA-2022:6838
-
RHSA-2022:6878
-
RHSA-2022:6997
-
RHSA-2022:6998
-
RHSA-2022:7020
-
RHSA-2022:7024
-
RHSA-2022:7026
-
RHSA-2023:3068
-
RLSA-2022:6878
-
RLSA-2022:7023
-
RLSA-2022:7024
-
SSA:2022-263-01
-
SSA:2022-286-01
-
SUSE-SU-2022:3466-1
-
SUSE-SU-2022:3489-1
-
SUSE-SU-2022:3597-1
-
USN-5638-1
-
USN-5638-2
-
USN-5638-4
-
USN-5726-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 2130769 |
|
|
| RHSA | RHSA-2022:7023 |
|
|
| CVE | CVE-2022-40674 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/redhat/thunderbird?arch=x86_64&distro=redhat-8.6 | redhat |
thunderbird
|
< 102.3.0-4.el8_6 | redhat-8.6 | x86_64 | |
| Affected | pkg:rpm/redhat/thunderbird?arch=s390x&distro=redhat-8.6 | redhat |
thunderbird
|
< 102.3.0-4.el8_6 | redhat-8.6 | s390x | |
| Affected | pkg:rpm/redhat/thunderbird?arch=ppc64le&distro=redhat-8.6 | redhat |
thunderbird
|
< 102.3.0-4.el8_6 | redhat-8.6 | ppc64le | |
| Affected | pkg:rpm/redhat/thunderbird?arch=aarch64&distro=redhat-8.6 | redhat |
thunderbird
|
< 102.3.0-4.el8_6 | redhat-8.6 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |