thunderbird-102.15.1-1.el9.ML.1
エラータID: AXSA:2023-6449:27
Release date:
Thursday, September 28, 2023 - 01:10
Subject:
thunderbird-102.15.1-1.el9.ML.1
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
Mozilla Thunderbird is a standalone mail and newsgroup client.
This update upgrades Thunderbird to version 102.15.1.
Security Fix(es):
* libwebp: Heap buffer overflow in WebP Codec (CVE-2023-4863)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2023-4863
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Solution:
Update packages.
CVEs:
CVE-2023-4863
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)
Additional Info:
N/A
Download:
SRPMS
- thunderbird-102.15.1-1.el9.ML.1.src.rpm
MD5: 1e2b08270a78cdcca47285ce38660ca6
SHA-256: 3af5f8960efa20841fd81cc2d6094293ee870ae99ec98d57e6bf96ea632b8203
Size: 617.11 MB
Asianux Server 9 for x86_64
- thunderbird-102.15.1-1.el9.ML.1.x86_64.rpm
MD5: 3ea30c23c121e08dcf1a060cae40cd3d
SHA-256: 8bfe32ea663f4960a0afcbc04119916a70f7b13960f3addf4ef457d38d5d1b56
Size: 102.52 MB
日本語