Synopsis: Important: thunderbird security update
Advisory ID: SLSA-2020:1489-1
Issue Date: 2020-04-16
CVE Numbers: CVE-2020-6819
CVE-2020-6820
CVE-2020-6821
CVE-2020-6822
CVE-2020-6825
—
Security Fix(es):
* Mozilla: Use-after-free while running the nsDocShell destructor
(CVE-2020-6819)
* Mozilla: Use-after-free when handling a ReadableStream (CVE-2020-6820)
* Mozilla: Uninitialized memory could be read when using the WebGL
copyTexSubImage method (CVE-2020-6821)
* Mozilla: Memory safety bugs fixed in Firefox 75 and Firefox ESR 68.7
(CVE-2020-6825)
* Mozilla: Out of bounds write in GMPDecodeData when processing large
images (CVE-2020-6822)
—
SL7
x86_64
thunderbird-68.7.0-1.el7_8.x86_64.rpm
thunderbird-debuginfo-68.7.0-1.el7_8.x86_64.rpm
– Scientific Linux Development Team
