Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

SUSE: 2020:3091-1 Critical Security Notice for Thunderbird and NSPR

suse
Calendar Grey October 29, 2020
Dist Suse Esm H88
SUSE has released updates for Mozilla Thunderbird and mozilla-nspr, tackling six significant vulnerabilities rated high severity. Find out more!
An update that fixes 6 vulnerabilities is now available

Summary

This update for MozillaThunderbird and mozilla-nspr fixes the following issues: - Mozilla Thunderbird 78.4 * new: MailExtensions: browser.tabs.sendMessage API added * new: MailExtensions: messageDisplayScripts API added * changed: Yahoo and AOL mail users using password authentication will be migrated to OAuth2 * changed: MailExtensions: messageDisplay APIs extended to support multiple selected messages * changed: MailExtensions: compose.begin functions now support creating a message with attachments * fixed: Thunderbird could freeze when updating global search index * fixed: Multiple issues with handling of self-signed SSL certificates addressed * fixed: Recipient address fields in compose window could expand to fill all available space

Topics%20covered

Topics Covered

security advisory patch important SUSE memory safety MozillaThunderbird mozilla-nspr

References

#1174230 #1176384 #1176756 #1176899 #1177977

Cross- CVE-2020-15673 CVE-2020-15676 CVE-2020-15677

CVE-2020-15678 CVE-2020-15683 CVE-2020-15969

Affected Products:

SUSE Linux Enterprise Workstation Extension 15-SP2

SUSE Linux Enterprise Workstation Extension 15-SP1

SUSE Linux Enterprise Module for Basesystem 15-SP2

SUSE Linux Enterprise Module for Basesystem 15-SP1

https://www.suse.com/security/cve/CVE-2020-15673.html

https://www.suse.com/security/cve/CVE-2020-15676.html

https://www.suse.com/security/cve/CVE-2020-15677.html

https://www.suse.com/security/cve/CVE-2020-15678.html

https://www.suse.com/security/cve/CVE-2020-15683.html

https://www.suse.com/security/cve/CVE-2020-15969.html

https://bugzilla.suse.com/1174230

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2020:3091-1
Rating: important

Topics%20covered

Topics Covered

security advisory patch important SUSE memory safety MozillaThunderbird mozilla-nspr

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here