thunderbird-128.6.0-3.el8_10.ML.1
エラータID: AXSA:2025-9550:02
リリース日:
2025/01/16 Thursday - 13:42
題名:
thunderbird-128.6.0-3.el8_10.ML.1
影響のあるチャネル:
Asianux Server 8 for x86_64
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
- Firefox および Thunderbird には、メモリ破壊の問題がある
ため、リモートの攻撃者により、任意のコードの実行を可能と
する脆弱性が存在します。(CVE-2025-0242)
- Firefox および Thunderbird には、メモリ破壊の問題がある
ため、ローカルの攻撃者により、任意のコードの実行を可能と
する脆弱性が存在します。(CVE-2025-0243)
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2025-0242
Memory safety bugs present in Firefox 133, Thunderbird 133, Firefox ESR 115.18, Firefox ESR 128.5, Thunderbird 115.18, and Thunderbird 128.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Firefox ESR < 115.19, Thunderbird < 134, and Thunderbird < 128.6.
Memory safety bugs present in Firefox 133, Thunderbird 133, Firefox ESR 115.18, Firefox ESR 128.5, Thunderbird 115.18, and Thunderbird 128.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Firefox ESR < 115.19, Thunderbird < 134, and Thunderbird < 128.6.
CVE-2025-0243
Memory safety bugs present in Firefox 133, Thunderbird 133, Firefox ESR 128.5, and Thunderbird 128.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.
Memory safety bugs present in Firefox 133, Thunderbird 133, Firefox ESR 128.5, and Thunderbird 128.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 134, Firefox ESR < 128.6, Thunderbird < 134, and Thunderbird < 128.6.
追加情報:
N/A
ダウンロード:
SRPMS
- thunderbird-128.6.0-3.el8_10.ML.1.src.rpm
MD5: a2b5782cfe3bc31902a0a109106f1dd9
SHA-256: 4b8bfbb3b53bef539d5b4aa7e6f67614dd50be89a22818010e43d2b0577c63cd
Size: 853.20 MB
Asianux Server 8 for x86_64
- thunderbird-128.6.0-3.el8_10.ML.1.x86_64.rpm
MD5: fda68c888a899d796b281418a087c5f3
SHA-256: 466d5cc9066e30f70ced02874dcdbd5e5e0da56f76ac0d5b13f3106767f6fa4b
Size: 122.05 MB
English