MGASA-2020-0421 - Updated firefox and thunderbird packages fix a security vulnerability

Publication date: 13 Nov 2020
Type: security
Affected Mageia releases: 7
CVE: CVE-2020-26950

Write side effects in MCallGetProperty opcode not accounted for.
In certain circumstances, the MCallGetProperty opcode can be emitted with
unmet assumptions resulting in an exploitable use-after-free condition.

Also some bugfix for Thunderbird have been added. See upstream release notes.


- 7/core/firefox-78.4.1-1.mga7
- 7/core/firefox-l10n-78.4.1-1.mga7
- 7/core/thunderbird-78.4.2-1.mga7
- 7/core/thunderbird-l10n-78.4.2-1.mga7