[SSA:2023-273-02] mozilla-thunderbird
New mozilla-thunderbird packages are available for Slackware 15.0 and -current
to fix a security issue.
Here are the details from the Slackware 15.0 ChangeLog
patches/packages/mozilla-thunderbird-115.3.1-i686-1_slack15.0.txz: Upgraded.
This release contains a security fix for a critical heap buffer overflow in
the libvpx VP8 encoder.
For more information, see:
https://www.mozilla.org/en-US/thunderbird/115.3.1/releasenotes/
https://www.mozilla.org/en-US/security/advisories/mfsa2023-44/
https://www.cve.org/CVERecord?id=CVE-2023-5217
(* Security fix *)
Where to find the new packages
Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)
Also see the "Get Slack" section on http://slackware.com for
additional mirror sites near you.
Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/mozilla-thunderbird-115.3.1-i686-1_slack15.0.txz
Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/mozilla-thunderbird-115.3.1-x86_64-1_slack15.0.txz
Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/xap/mozilla-thunderbird-115.3.1-i686-1.txz
Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/xap/mozilla-thunderbird-115.3.1-x86_64-1.txz
MD5 signatures
Slackware 15.0 package:
0cea2374ec068923458ad9c103478ebf mozilla-thunderbird-115.3.1-i686-1_slack15.0.txz
Slackware x86_64 15.0 package:
52a2814e0b07a90be709bd26928fb5eb mozilla-thunderbird-115.3.1-x86_64-1_slack15.0.txz
Slackware -current package:
602be3f93800465c9db6f6aff9554a56 xap/mozilla-thunderbird-115.3.1-i686-1.txz
Slackware x86_64 -current package:
263fe29cea0d763a4309ae6d659c0f8c xap/mozilla-thunderbird-115.3.1-x86_64-1.txz
Installation instructions
Upgrade the package as root:
# upgradepkg mozilla-thunderbird-115.3.1-i686-1_slack15.0.txz
- ID
- SSA:2023-273-02
- Severity
- high
- Severity from
- CVE-2023-5217
- URL
- http://www.slackware.com/security/viewer.php?l=slackware-security&y=2023&m=slackware-security.371037
- Published
-
2023-09-30T21:42:55
(11 months ago) - Modified
-
2023-09-30T21:42:55
(11 months ago) - Rights
- Slackware Linux Security Team
- Other Advisories
-
- ALPINE:CVE-2023-5217
- ALSA-2023:5434
- ALSA-2023:5435
- ALSA-2023:5537
- ALSA-2023:5539
- CISA-2023:1002
- DSA-5508-1
- DSA-5509-1
- DSA-5510-1
- DSA-5513-1
- ELSA-2023-5428
- ELSA-2023-5433
- ELSA-2023-5434
- ELSA-2023-5435
- ELSA-2023-5475
- ELSA-2023-5477
- ELSA-2023-5537
- ELSA-2023-5539
- FEDORA-2023-0cd03c3746
- FEDORA-2023-10ff82e497
- FEDORA-2023-bbb8d72c6f
- FEDORA-2023-c890266d3f
- FEDORA-2023-c896cf87db
- FEDORA-2023-d66a01ad4f
- FEDORA-2023-f696934fbf
- FREEBSD:2BCD6BA4-D8E2-42E5-9033-B50B722821FB
- FREEBSD:6D9C6AAE-5EB1-11EE-8290-A8A1599412C6
- GLSA-202310-04
- GLSA-202401-34
- MFSA-2023-44
- MS:CVE-2023-5217
- NPM:GHSA-QQVQ-6XGJ-JW8G
- openSUSE-SU-2023:0277-1
- openSUSE-SU-2023:0297-1
- openSUSE-SU-2023:0298-1
- openSUSE-SU-2023:0365-1
- openSUSE-SU-2023:0366-1
- RHSA-2023:5428
- RHSA-2023:5433
- RHSA-2023:5434
- RHSA-2023:5435
- RHSA-2023:5475
- RHSA-2023:5477
- RHSA-2023:5537
- RHSA-2023:5539
- RLSA-2023:5428
- RLSA-2023:5435
- SSA:2023-271-01
- SSA:2023-273-01
- SUSE-SU-2023:3940-1
- SUSE-SU-2023:3941-1
- SUSE-SU-2023:3946-1
- SUSE-SU-2023:3948-1
- SUSE-SU-2023:3949-1
- SUSE-SU-2023:3950-1
- SUSE-SU-2023:4016-1
- USN-6403-1
- USN-6403-2
- USN-6403-3
- USN-6404-1
- USN-6405-1
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:slackbuild/slackware/mozilla-thunderbird?arch=x86_64&distro=slackware64-current | slackware | mozilla-thunderbird | < 115.3.1 | slackware64-current | x86_64 | |
Affected | pkg:slackbuild/slackware/mozilla-thunderbird?arch=x86_64&distro=slackware64-15.0 | slackware | mozilla-thunderbird | < 115.3.1 | slackware64-15.0 | x86_64 | |
Affected | pkg:slackbuild/slackware/mozilla-thunderbird?arch=i686&distro=slackware-current | slackware | mozilla-thunderbird | < 115.3.1 | slackware-current | i686 | |
Affected | pkg:slackbuild/slackware/mozilla-thunderbird?arch=i686&distro=slackware-15.0 | slackware | mozilla-thunderbird | < 115.3.1 | slackware-15.0 | i686 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |