SUSE: 2019:2912-1 Important: MozillaThunderbird Update with Fixes

suse

November 7, 2019

An update that fixes 9 vulnerabilities is now available

Summary

This update for MozillaThunderbird to version 68.2.1 provides the following fixes: - Security issues fixed (bsc#1154738): * CVE-2019-15903: Fixed a heap overflow in the expat library (bsc#1149429). * CVE-2019-11757: Fixed a use-after-free when creating index updates in IndexedDB (bsc#1154738). * CVE-2019-11758: Fixed a potentially exploitable crash due to 360 Total Security (bsc#1154738). * CVE-2019-11759: Fixed a stack buffer overflow in HKDF output (bsc#1154738). * CVE-2019-11760: Fixed a stack buffer overflow in WebRTC networking (bsc#1154738). * CVE-2019-11761: Fixed an unintended access to a privileged JSONView object (bsc#1154738). * CVE-2019-11762: Fixed a same-origin-property violation (bsc#1154738). * CVE-2019-11763: Fixed an XSS bypass (bsc#1154738).

Topics Covered

security advisory buffer overflow important heap overflow suse mozilla thunderbird use-after-free

References

#1149126 #1149429 #1151186 #1152778 #1153879

#1154738

Cross- CVE-2019-11757 CVE-2019-11758 CVE-2019-11759

CVE-2019-11760 CVE-2019-11761 CVE-2019-11762

CVE-2019-11763 CVE-2019-11764 CVE-2019-15903

Affected Products:

SUSE Linux Enterprise Workstation Extension 15-SP1

SUSE Linux Enterprise Workstation Extension 15

https://www.suse.com/security/cve/CVE-2019-11757.html

https://www.suse.com/security/cve/CVE-2019-11758.html

https://www.suse.com/security/cve/CVE-2019-11759.html

https://www.suse.com/security/cve/CVE-2019-11760.html

https://www.suse.com/security/cve/CVE-2019-11761.html

https://www.suse.com/security/cve/CVE-2019-11762.html

https://www.suse.com/security/cve/CVE-2019-11763.html

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2019:2912-1

Rating: important

Topics Covered

security advisory buffer overflow important heap overflow suse mozilla thunderbird use-after-free

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Like staying secure? So do we.
Sign up for updates, tips, and alerts!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2019:2912-1 Important: MozillaThunderbird Update with Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

SUSE: 2019:2912-1 Important: MozillaThunderbird Update with Fixes

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!