SciLinux: Important Thunderbird Security Update Errata 09-58-10

Date: Thu, 8 Sep 2011 09:58:10 -0500
Reply-To: "Tyler L. Parsons" 
Sender: Security Errata for Scientific Linux
 
From: "Tyler L. Parsons" 
Subject: Security ERRATA Important: thunderbird on SL4.x, SL5.x,
 SL6.x i386/x86_64
Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it."
 
MIME-Version: 1.0

Synopsis: Important: thunderbird security update
Issue Date: 2011-09-06

Mozilla Thunderbird is a standalone mail and newsgroup client.

A previous Thunderbird update rendered HTTPS certificates signed by
a certain Certificate Authority (CA) as untrusted, but made an exception
for a select few. This update removes that exception, rendering every HTTPS
certificate signed by that CA as untrusted.

All Thunderbird users should upgrade to this updated package, which
resolves this issue. All running instances of Thunderbird must be
restarted for the update to take effect.

SL4:
 i386
 thunderbird-1.5.0.12-43.el4.i386.rpm
 thunderbird-debuginfo-1.5.0.12-43.el4.i386.rpm
 x86_64
 thunderbird-debuginfo-1.5.0.12-43.el4.x86_64.rpm
 thunderbird-1.5.0.12-43.el4.x86_64.rpm
SL5:
 i386
 thunderbird-debuginfo-2.0.0.24-25.el5.i386.rpm
 thunderbird-2.0.0.24-25.el5.i386.rpm
 x86_64
 thunderbird-2.0.0.24-25.el5.x86_64.rpm
 thunderbird-debuginfo-2.0.0.24-25.el5.x86_64.rpm
SL6:
 i386
 thunderbird-debuginfo-3.1.14-1.el6_1.i686.rpm
 thunderbird-3.1.14-1.el6_1.i686.rpm
 x86_64
 thunderbird-3.1.14-1.el6_1.x86_64.rpm
 thunderbird-debuginfo-3.1.14-1.el6_1.x86_64.rpm

- Scientific Linux Development Team