Critical: thunderbird security update
Date: Tue, 28 Aug 2012 08:47:52 -0500
Reply-To: Pat Riehecky
Sender: Security Errata for Scientific Linux
From: Pat Riehecky
Organization: Fermilab
Subject: FASTBUGS for SL 6x i386, x86_64 now available
MIME-Version: 1.0
The following FASTBUGS have been uploaded to
i386:
clusterlib-3.0.12.1-32.el6_3.1.i686.rpm
clusterlib-devel-3.0.12.1-32.el6_3.1.i686.rpm
cman-3.0.12.1-32.el6_3.1.i686.rpm
ftp-0.17-51.3.el6.i686.rpm
gfs2-utils-3.0.12.1-32.el6_3.1.i686.rpm
kernel-2.6.32-279.5.2.el6.i686.rpm
kernel-debug-2.6.32-279.5.2.el6.i686.rpm
kernel-debug-devel-2.6.32-279.5.2.el6.i686.rpm
kernel-devel-2.6.32-279.5.2.el6.i686.rpm
kernel-doc-2.6.32-279.5.2.el6.noarch.rpm
kernel-firmware-2.6.32-279.5.2.el6.noarch.rpm
kernel-headers-2.6.32-279.5.2.el6.i686.rpm
livecd-tools-13.4-10.sl6.i686.rpm
liveusb-creator-3.11.7-6.3.sl6.noarch.rpm
openssl-1.0.0-25.el6_3.1.i686.rpm
openssl-devel-1.0.0-25.el6_3.1.i686.rpm
openssl-perl-1.0.0-25.el6_3.1.i686.rpm
openssl-static-1.0.0-25.el6_3.1.i686.rpm
perf-2.6.32-279.5.2.el6.i686.rpm
python-imgcreate-13.4-10.sl6.i686.rpm
python-perf-2.6.32-279.5.2.el6.i686.rpm
x86_64:
clusterlib-3.0.12.1-32.el6_3.1.i686.rpm
clusterlib-3.0.12.1-32.el6_3.1.x86_64.rpm
clusterlib-devel-3.0.12.1-32.el6_3.1.i686.rpm
clusterlib-devel-3.0.12.1-32.el6_3.1.x86_64.rpm
cman-3.0.12.1-32.el6_3.1.x86_64.rpm
ftp-0.17-51.3.el6.x86_64.rpm
gfs2-utils-3.0.12.1-32.el6_3.1.x86_64.rpm
kernel-2.6.32-279.5.2.el6.x86_64.rpm
kernel-debug-2.6.32-279.5.2.el6.x86_64.rpm
kernel-debug-devel-2.6.32-279.5.2.el6.x86_64.rpm
kernel-devel-2.6.32-279.5.2.el6.x86_64.rpm
kernel-doc-2.6.32-279.5.2.el6.noarch.rpm
kernel-firmware-2.6.32-279.5.2.el6.noarch.rpm
kernel-headers-2.6.32-279.5.2.el6.x86_64.rpm
livecd-tools-13.4-10.sl6.x86_64.rpm
liveusb-creator-3.11.7-6.3.sl6.noarch.rpm
openssl-1.0.0-25.el6_3.1.i686.rpm
openssl-1.0.0-25.el6_3.1.x86_64.rpm
openssl-devel-1.0.0-25.el6_3.1.i686.rpm
openssl-devel-1.0.0-25.el6_3.1.x86_64.rpm
openssl-perl-1.0.0-25.el6_3.1.x86_64.rpm
openssl-static-1.0.0-25.el6_3.1.x86_64.rpm
perf-2.6.32-279.5.2.el6.x86_64.rpm
python-imgcreate-13.4-10.sl6.x86_64.rpm
python-perf-2.6.32-279.5.2.el6.x86_64.rpm
Date: Wed, 29 Aug 2012 09:49:58 -0500
Reply-To: Pat Riehecky
Sender: Security Errata for Scientific Linux
From: Pat Riehecky
Organization: Fermilab
Subject: Security ERRATA Critical: thunderbird on SL5.x, SL6.x i386/x86_64
In-Reply-To: <This email address is being protected from spambots. You need JavaScript enabled to view it.>
MIME-Version: 1.0
Synopsis: Critical: thunderbird security update
Issue Date: 2012-08-29
CVE Numbers: CVE-2012-1970
CVE-2012-3966
CVE-2012-3967
CVE-2012-3968
CVE-2012-3969
CVE-2012-3970
CVE-2012-3972
CVE-2012-3978
CVE-2012-3980
Mozilla Thunderbird is a standalone mail and newsgroup client.
Several flaws were found in the processing of malformed content. Malicious
content could cause Thunderbird to crash or, potentially, execute arbitrary
code with the privileges of the user running Thunderbird. (CVE-2012-1970,
CVE-2012-1972, CVE-2012-1973, CVE-2012-1974, CVE-2012-1975, CVE-2012-1976,
CVE-2012-3956, CVE-2012-3957, CVE-2012-3958, CVE-2012-3959, CVE-2012-3960,
CVE-2012-3961, CVE-2012-3962, CVE-2012-3963, CVE-2012-3964)
Content containing a malicious Scalable Vector Graphics (SVG) image file
could cause Thunderbird to crash or, potentially, execute arbitrary code
with the privileges of the user running Thunderbird. (CVE-2012-3969,
CVE-2012-3970)
Two flaws were found in the way Thunderbird rendered certain images using
WebGL. Malicious content could cause Thunderbird to crash or, under certain
conditions, possibly execute arbitrary code with the privileges of the user
running Thunderbird. (CVE-2012-3967, CVE-2012-3968)
A flaw was found in the way Thunderbird decoded embedded bitmap images in
Icon Format (ICO) files. Content containing a malicious ICO file could
cause Thunderbird to crash or, under certain conditions, possibly execute
arbitrary code with the privileges of the user running Thunderbird.
(CVE-2012-3966)
A flaw was found in the way the "eval" command was handled by the
Thunderbird Error Console. Running "eval" in the Error Console while
viewing malicious content could possibly cause Thunderbird to execute
arbitrary code with the privileges of the user running Thunderbird.
(CVE-2012-3980)
An out-of-bounds memory read flaw was found in the way Thunderbird used the
format-number feature of XSLT (Extensible Stylesheet Language
Transformations). Malicious content could possibly cause an information
leak, or cause Thunderbird to crash. (CVE-2012-3972)
A flaw was found in the location object implementation in Thunderbird.
Malicious content could use this flaw to possibly allow restricted content
to be loaded. (CVE-2012-3978)
Note: All issues except CVE-2012-3969 and CVE-2012-3970 cannot be exploited
by a specially-crafted HTML mail message as JavaScript is disabled by
default for mail messages. They could be exploited another way in
Thunderbird, for example, when viewing the full remote content of an RSS
feed.
All Thunderbird users should upgrade to this updated package, which
contains Thunderbird version 10.0.7 ESR, which corrects these issues. After
installing the update, Thunderbird must be restarted for the changes to
take effect.
SL5
x86_64
thunderbird-10.0.7-1.el5_8.x86_64.rpm
i386
thunderbird-10.0.7-1.el5_8.i386.rpm
SL6
x86_64
thunderbird-10.0.7-1.el6_3.x86_64.rpm
i386
thunderbird-10.0.7-1.el6_3.i686.rpm
- Scientific Linux Development Team