1. Home
  2. Security Advisories
  3. SUSE
  4. SUSE-SU-2023:4588-1

[SUSE-SU-2023:4588-1] Security update for MozillaThunderbird

Severity Important
Affected Packages 24
CVEs 7
Info Packages References Vulnerabilities

Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issues:

  • Mozilla Thunderbird 115.5.0 MFSA 2023-52 (bsc#1217230)

    • CVE-2023-6204: Out-of-bound memory access in WebGL2 blitFramebuffer
    • CVE-2023-6205: Use-after-free in MessagePort::Entangled
    • CVE-2023-6206: Clickjacking permission prompts using the fullscreen transition
    • CVE-2023-6207: Use-after-free in ReadableByteStreamQueueEntry::Buffer
    • CVE-2023-6208: Using Selection API would copy contents into X11 primary selection.
    • CVE-2023-6209: Incorrect parsing of relative URLs starting with '///'
    • CVE-2023-6212: Memory safety bugs
Package Affected Version
pkg:rpm/suse/MozillaThunderbird?arch=x86_64&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird?arch=x86_64&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird?arch=s390x&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird?arch=s390x&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird?arch=ppc64le&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird?arch=ppc64le&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird?arch=aarch64&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird?arch=aarch64&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-other?arch=x86_64&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-other?arch=x86_64&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-other?arch=s390x&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-other?arch=s390x&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-other?arch=ppc64le&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-other?arch=ppc64le&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-other?arch=aarch64&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-other?arch=aarch64&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-common?arch=x86_64&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-common?arch=x86_64&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-common?arch=s390x&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-common?arch=s390x&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-common?arch=ppc64le&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-common?arch=ppc64le&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-common?arch=aarch64&distro=opensuse-leap-15.5 < 115.5.0-150200.8.139.1
pkg:rpm/suse/MozillaThunderbird-translations-common?arch=aarch64&distro=opensuse-leap-15.4 < 115.5.0-150200.8.139.1
ID
SUSE-SU-2023:4588-1
Severity
important
URL
https://www.suse.com/support/update/announcement/2023/suse-su-20234588-1/
Published
2023-11-27T13:28:12
(9 months ago)
Modified
2023-11-27T13:28:12
(9 months ago)
Rights
Copyright 2024 SUSE LLC. All rights reserved.
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/suse/MozillaThunderbird?arch=x86_64&distro=opensuse-leap-15.5 suse MozillaThunderbird < 115.5.0-150200.8.139.1 opensuse-leap-15.5 x86_64
Affected pkg:rpm/suse/MozillaThunderbird?arch=x86_64&distro=opensuse-leap-15.4 suse MozillaThunderbird < 115.5.0-150200.8.139.1 opensuse-leap-15.4 x86_64
Affected pkg:rpm/suse/MozillaThunderbird?arch=s390x&distro=opensuse-leap-15.5 suse MozillaThunderbird < 115.5.0-150200.8.139.1 opensuse-leap-15.5 s390x
Affected pkg:rpm/suse/MozillaThunderbird?arch=s390x&distro=opensuse-leap-15.4 suse MozillaThunderbird < 115.5.0-150200.8.139.1 opensuse-leap-15.4 s390x
Affected pkg:rpm/suse/MozillaThunderbird?arch=ppc64le&distro=opensuse-leap-15.5 suse MozillaThunderbird < 115.5.0-150200.8.139.1 opensuse-leap-15.5 ppc64le
Affected pkg:rpm/suse/MozillaThunderbird?arch=ppc64le&distro=opensuse-leap-15.4 suse MozillaThunderbird < 115.5.0-150200.8.139.1 opensuse-leap-15.4 ppc64le
Affected pkg:rpm/suse/MozillaThunderbird?arch=aarch64&distro=opensuse-leap-15.5 suse MozillaThunderbird < 115.5.0-150200.8.139.1 opensuse-leap-15.5 aarch64
Affected pkg:rpm/suse/MozillaThunderbird?arch=aarch64&distro=opensuse-leap-15.4 suse MozillaThunderbird < 115.5.0-150200.8.139.1 opensuse-leap-15.4 aarch64
Affected pkg:rpm/suse/MozillaThunderbird-translations-other?arch=x86_64&distro=opensuse-leap-15.5 suse MozillaThunderbird-translations-other < 115.5.0-150200.8.139.1 opensuse-leap-15.5 x86_64
Affected pkg:rpm/suse/MozillaThunderbird-translations-other?arch=x86_64&distro=opensuse-leap-15.4 suse MozillaThunderbird-translations-other < 115.5.0-150200.8.139.1 opensuse-leap-15.4 x86_64
Affected pkg:rpm/suse/MozillaThunderbird-translations-other?arch=s390x&distro=opensuse-leap-15.5 suse MozillaThunderbird-translations-other < 115.5.0-150200.8.139.1 opensuse-leap-15.5 s390x
Affected pkg:rpm/suse/MozillaThunderbird-translations-other?arch=s390x&distro=opensuse-leap-15.4 suse MozillaThunderbird-translations-other < 115.5.0-150200.8.139.1 opensuse-leap-15.4 s390x
Affected pkg:rpm/suse/MozillaThunderbird-translations-other?arch=ppc64le&distro=opensuse-leap-15.5 suse MozillaThunderbird-translations-other < 115.5.0-150200.8.139.1 opensuse-leap-15.5 ppc64le
Affected pkg:rpm/suse/MozillaThunderbird-translations-other?arch=ppc64le&distro=opensuse-leap-15.4 suse MozillaThunderbird-translations-other < 115.5.0-150200.8.139.1 opensuse-leap-15.4 ppc64le
Affected pkg:rpm/suse/MozillaThunderbird-translations-other?arch=aarch64&distro=opensuse-leap-15.5 suse MozillaThunderbird-translations-other < 115.5.0-150200.8.139.1 opensuse-leap-15.5 aarch64
Affected pkg:rpm/suse/MozillaThunderbird-translations-other?arch=aarch64&distro=opensuse-leap-15.4 suse MozillaThunderbird-translations-other < 115.5.0-150200.8.139.1 opensuse-leap-15.4 aarch64
Affected pkg:rpm/suse/MozillaThunderbird-translations-common?arch=x86_64&distro=opensuse-leap-15.5 suse MozillaThunderbird-translations-common < 115.5.0-150200.8.139.1 opensuse-leap-15.5 x86_64
Affected pkg:rpm/suse/MozillaThunderbird-translations-common?arch=x86_64&distro=opensuse-leap-15.4 suse MozillaThunderbird-translations-common < 115.5.0-150200.8.139.1 opensuse-leap-15.4 x86_64
Affected pkg:rpm/suse/MozillaThunderbird-translations-common?arch=s390x&distro=opensuse-leap-15.5 suse MozillaThunderbird-translations-common < 115.5.0-150200.8.139.1 opensuse-leap-15.5 s390x
Affected pkg:rpm/suse/MozillaThunderbird-translations-common?arch=s390x&distro=opensuse-leap-15.4 suse MozillaThunderbird-translations-common < 115.5.0-150200.8.139.1 opensuse-leap-15.4 s390x
Affected pkg:rpm/suse/MozillaThunderbird-translations-common?arch=ppc64le&distro=opensuse-leap-15.5 suse MozillaThunderbird-translations-common < 115.5.0-150200.8.139.1 opensuse-leap-15.5 ppc64le
Affected pkg:rpm/suse/MozillaThunderbird-translations-common?arch=ppc64le&distro=opensuse-leap-15.4 suse MozillaThunderbird-translations-common < 115.5.0-150200.8.139.1 opensuse-leap-15.4 ppc64le
Affected pkg:rpm/suse/MozillaThunderbird-translations-common?arch=aarch64&distro=opensuse-leap-15.5 suse MozillaThunderbird-translations-common < 115.5.0-150200.8.139.1 opensuse-leap-15.5 aarch64
Affected pkg:rpm/suse/MozillaThunderbird-translations-common?arch=aarch64&distro=opensuse-leap-15.4 suse MozillaThunderbird-translations-common < 115.5.0-150200.8.139.1 opensuse-leap-15.4 aarch64
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date