Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

openSUSE Leap 16.0: Mozilla Thunderbird Security Update for 2025-20011-1

opensuse
Calendar Grey November 10, 2025
Dist Opensuse Esm H88
This update for MozillaThunderbird addresses 8 vulnerabilities and 2 bug fixes for openSUSE users, enhancing security.
An update that solves 8 vulnerabilities and has 2 bug fixes can now be installed.

Description

This update for MozillaThunderbird fixes the following issues:

Mozilla Thunderbird 140.4:

* changed: Account Hub is now disabled by default for second

email account

* changed: Flatpak runtime has been updated to Freedesktop SDK

24.08

* fixed: Users could not read mail signed with OpenPGP v6 and

PQC keys

* fixed: Image preview in Insert Image dialog failed with CSP

error for web resources

* fixed: Emptying trash on exit did not work with some

providers

* fixed: Thunderbird could crash when applying filters

* fixed: Users were unable to override expired mail server

certificate

* fixed: Opening Website header link in RSS feed incorrectly

re-encoded URL parameters

* fixed: Security fixes

MFSA 2025-85 (bsc#1251263):

* CVE-2025-11708

Use-after-free in MediaTrackGraphImpl::GetInstance()

* CVE-2025-11709

Out of bounds read/write in a privileged process triggered by

WebGL textures

* CVE-2025-11710

Cross-process...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory moderate update issue OpenSUSE MozillaThunderbird

Patch

Package List

- openSUSE Leap 16.0:

MozillaThunderbird-140.4.0-bp160.1.1

MozillaThunderbird-openpgp-librnp-140.4.0-bp160.1.1

MozillaThunderbird-translations-common-140.4.0-bp160.1.1

MozillaThunderbird-translations-other-140.4.0-bp160.1.1

References

* bsc#1247774

* bsc#1251263

References:

* https://www.suse.com/security/cve/CVE-2025-11708.html

* https://www.suse.com/security/cve/CVE-2025-11709.html

* https://www.suse.com/security/cve/CVE-2025-11710.html

* https://www.suse.com/security/cve/CVE-2025-11711.html

* https://www.suse.com/security/cve/CVE-2025-11712.html

* https://www.suse.com/security/cve/CVE-2025-11713.html

* https://www.suse.com/security/cve/CVE-2025-11714.html

* https://www.suse.com/security/cve/CVE-2025-11715.html

Announcement ID: openSUSE-SU-2025-20011-1
Rating: moderate
Affected Products: openSUSE Leap 16.0 -------------------------------------------------------------

Topics%20covered

Topics Covered

security advisory moderate update issue OpenSUSE MozillaThunderbird

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here