Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2010:0545-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2010-0545.html
Issue date: 2010-07-20
CVE Names: CVE-2010-0174 CVE-2010-0175 CVE-2010-0176
CVE-2010-0177 CVE-2010-1197 CVE-2010-1198
CVE-2010-1199 CVE-2010-1200 CVE-2010-1205
CVE-2010-1211 CVE-2010-1214 CVE-2010-2753
CVE-2010-2754
================================================== ===================

1. Summary:

An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

RHEL Optional Productivity Applications (v. 5 server) - i386, x86_64
Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

A memory corruption flaw was found in the way Thunderbird decoded certain
PNG images. An attacker could create a mail message containing a
specially-crafted PNG image that, when opened, could cause Thunderbird to
crash or, potentially, execute arbitrary code with the privileges of the
user running Thunderbird. (CVE-2010-1205)

Several flaws were found in the processing of malformed HTML mail content.
An HTML mail message containing malicious content could cause Thunderbird
to crash or, potentially, execute arbitrary code with the privileges of the
user running Thunderbird. (CVE-2010-0174, CVE-2010-1200, CVE-2010-1211,
CVE-2010-1214, CVE-2010-2753)

An integer overflow flaw was found in the processing of malformed HTML mail
content. An HTML mail message containing malicious content could cause
Thunderbird to crash or, potentially, execute arbitrary code with the
privileges of the user running Thunderbird. (CVE-2010-1199)

Several use-after-free flaws were found in Thunderbird. Viewing an HTML
mail message containing malicious content could result in Thunderbird
executing arbitrary code with the privileges of the user running
Thunderbird. (CVE-2010-0175, CVE-2010-0176, CVE-2010-0177)

A flaw was found in the way Thunderbird plug-ins interact. It was possible
for a plug-in to reference the freed memory from a different plug-in,
resulting in the execution of arbitrary code with the privileges of the
user running Thunderbird. (CVE-2010-1198)

A flaw was found in the way Thunderbird handled the "Content-Disposition:
attachment" HTTP header when the "Content-Type: multipart" HTTP header was
also present. Loading remote HTTP content that allows arbitrary uploads and
relies on the "Content-Disposition: attachment" HTTP header to prevent
content from being displayed inline, could be used by an attacker to serve
malicious content to users. (CVE-2010-1197)

A same-origin policy bypass flaw was found in Thunderbird. Remote HTML
content could steal private data from different remote HTML content
Thunderbird has loaded. (CVE-2010-2754)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

578147 - CVE-2010-0174 Mozilla crashes with evidence of memory corruption
578149 - CVE-2010-0175 Mozilla remote code execution with use-after-free in nsTreeSelection
578150 - CVE-2010-0176 Mozilla Dangling pointer vulnerability in nsTreeContentView
578152 - CVE-2010-0177 Mozilla Dangling pointer vulnerability in nsPluginArray
590804 - CVE-2010-1200 Mozilla Crashes with evidence of memory corruption
590828 - CVE-2010-1198 Mozilla Freed object reuse across plugin instances
590833 - CVE-2010-1199 Mozilla Integer Overflow in XSLT Node Sorting
590850 - CVE-2010-1197 Mozilla Content-Disposition: attachment ignored if Content-Type: multipart also present
608238 - CVE-2010-1205 libpng: out-of-bounds memory write
615455 - CVE-2010-1211 Mozilla miscellaneous memory safety hazards
615462 - CVE-2010-1214 Mozilla Plugin parameter EnsureCachedAttrParamArrays remote code execution vulnerability
615466 - CVE-2010-2753 Mozilla nsTreeSelection dangling pointer remote code execution vulnerability
615488 - CVE-2010-2754 Mozilla Cross-origin data leakage from script filename in error messages

6. Package List:

Red Hat Enterprise Linux Desktop (v. 5 client):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/thunderbird-2.0.0.24-6.el5.src.rpm

i386:
thunderbird-2.0.0.24-6.el5.i386.rpm
thunderbird-debuginfo-2.0.0.24-6.el5.i386.rpm

x86_64:
thunderbird-2.0.0.24-6.el5.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-6.el5.x86_64.rpm

RHEL Optional Productivity Applications (v. 5 server):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/thunderbird-2.0.0.24-6.el5.src.rpm

i386:
thunderbird-2.0.0.24-6.el5.i386.rpm
thunderbird-debuginfo-2.0.0.24-6.el5.i386.rpm

x86_64:
thunderbird-2.0.0.24-6.el5.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-6.el5.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2010-0174.html
https://www.redhat.com/security/data/cve/CVE-2010-0175.html
https://www.redhat.com/security/data/cve/CVE-2010-0176.html
https://www.redhat.com/security/data/cve/CVE-2010-0177.html
https://www.redhat.com/security/data/cve/CVE-2010-1197.html
https://www.redhat.com/security/data/cve/CVE-2010-1198.html
https://www.redhat.com/security/data/cve/CVE-2010-1199.html
https://www.redhat.com/security/data/cve/CVE-2010-1200.html
https://www.redhat.com/security/data/cve/CVE-2010-1205.html
https://www.redhat.com/security/data/cve/CVE-2010-1211.html
https://www.redhat.com/security/data/cve/CVE-2010-1214.html
https://www.redhat.com/security/data/cve/CVE-2010-2753.html
https://www.redhat.com/security/data/cve/CVE-2010-2754.html
http://www.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://www.redhat.com/security/team/contact/

Copyright 2010 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFMRlEGXlSAg2UNWIIRAm74AKDAZ6vNVbJPrvaVeoY8F/+I3vjO4wCfZSjo
q5mE2Lj5iUbueLA6T4ExIqE=
=7eMl
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2011:0311-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-0311.html
Issue date: 2011-03-01
CVE Names: CVE-2010-1585 CVE-2011-0053 CVE-2011-0061
CVE-2011-0062
================================================== ===================

1. Summary:

An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64
Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

Several flaws were found in the processing of malformed HTML content.
Malicious HTML content could cause Thunderbird to crash or, potentially,
execute arbitrary code with the privileges of the user running Thunderbird.
(CVE-2010-1585, CVE-2011-0053, CVE-2011-0062)

A flaw was found in the way Thunderbird handled malformed JPEG images. An
HTML mail message containing a malicious JPEG image could cause
Thunderbird to crash or, potentially, execute arbitrary code with the
privileges of the user running Thunderbird. (CVE-2011-0061)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

675082 - CVE-2011-0053 Mozilla miscellaneous memory safety hazards (MFSA 2011-01)
675083 - CVE-2011-0062 Mozilla miscellaneous memory safety hazards (MFSA 2011-01)
675094 - CVE-2010-1585 Mozilla ParanoidFragmentSink allows javascript: URLs in chrome documents (MFSA 2011-08)
675095 - CVE-2011-0061 Mozilla crash caused by corrupted JPEG image (MFSA 2011-09)

6. Package List:

Red Hat Enterprise Linux Desktop (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/thunderbird-3.1.8-4.el6_0.src.rpm

i386:
thunderbird-3.1.8-4.el6_0.i686.rpm
thunderbird-debuginfo-3.1.8-4.el6_0.i686.rpm

x86_64:
thunderbird-3.1.8-4.el6_0.x86_64.rpm
thunderbird-debuginfo-3.1.8-4.el6_0.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/thunderbird-3.1.8-4.el6_0.src.rpm

i386:
thunderbird-3.1.8-4.el6_0.i686.rpm
thunderbird-debuginfo-3.1.8-4.el6_0.i686.rpm

ppc64:
thunderbird-3.1.8-4.el6_0.ppc64.rpm
thunderbird-debuginfo-3.1.8-4.el6_0.ppc64.rpm

s390x:
thunderbird-3.1.8-4.el6_0.s390x.rpm
thunderbird-debuginfo-3.1.8-4.el6_0.s390x.rpm

x86_64:
thunderbird-3.1.8-4.el6_0.x86_64.rpm
thunderbird-debuginfo-3.1.8-4.el6_0.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/thunderbird-3.1.8-4.el6_0.src.rpm

i386:
thunderbird-3.1.8-4.el6_0.i686.rpm
thunderbird-debuginfo-3.1.8-4.el6_0.i686.rpm

x86_64:
thunderbird-3.1.8-4.el6_0.x86_64.rpm
thunderbird-debuginfo-3.1.8-4.el6_0.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2010-1585.html
https://www.redhat.com/security/data/cve/CVE-2011-0053.html
https://www.redhat.com/security/data/cve/CVE-2011-0061.html
https://www.redhat.com/security/data/cve/CVE-2011-0062.html
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://www.redhat.com/security/team/contact/

Copyright 2011 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFNbZ8UXlSAg2UNWIIRAjJnAKCDgMOsTPaWpKgqS+3Tkh 0oxUa5kgCcDpPj
2qEGCas7kyiUSeXSz+xLKng=
=LOmS
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2011:0474-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-0474.html
Issue date: 2011-04-28
CVE Names: CVE-2011-0073 CVE-2011-0074 CVE-2011-0075
CVE-2011-0077 CVE-2011-0078 CVE-2011-0080
================================================== ===================

1. Summary:

An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 4 and 5.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

RHEL Optional Productivity Applications (v. 5 server) - i386, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

Several flaws were found in the processing of malformed HTML content. An
HTML mail message containing malicious content could possibly lead to
arbitrary code execution with the privileges of the user running
Thunderbird. (CVE-2011-0080)

An arbitrary memory write flaw was found in the way Thunderbird handled
out-of-memory conditions. If all memory was consumed when a user viewed a
malicious HTML mail message, it could possibly lead to arbitrary code
execution with the privileges of the user running Thunderbird.
(CVE-2011-0078)

An integer overflow flaw was found in the way Thunderbird handled the HTML
frameset tag. An HTML mail message with a frameset tag containing large
values for the "rows" and "cols" attributes could trigger this flaw,
possibly leading to arbitrary code execution with the privileges of the
user running Thunderbird. (CVE-2011-0077)

A flaw was found in the way Thunderbird handled the HTML iframe tag. An
HTML mail message with an iframe tag containing a specially-crafted source
address could trigger this flaw, possibly leading to arbitrary code
execution with the privileges of the user running Thunderbird.
(CVE-2011-0075)

A flaw was found in the way Thunderbird displayed multiple marquee
elements. A malformed HTML mail message could cause Thunderbird to execute
arbitrary code with the privileges of the user running Thunderbird.
(CVE-2011-0074)

A flaw was found in the way Thunderbird handled the nsTreeSelection
element. Malformed content could cause Thunderbird to execute arbitrary
code with the privileges of the user running Thunderbird. (CVE-2011-0073)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

700603 - CVE-2011-0078 Mozilla OOM condition arbitrary memory write (MFSA 2011-12)
700613 - CVE-2011-0077 Mozilla integer overflow in frameset spec (MFSA 2011-12)
700615 - CVE-2011-0075 Mozilla crash from bad iframe source (MFSA 2011-12)
700617 - CVE-2011-0074 Mozilla crash from several marquee elements (MFSA 2011-12)
700619 - CVE-2011-0073 Mozilla dangling pointer flaw (MFSA 2011-13)
700677 - CVE-2011-0080 Mozilla memory safety issue (MFSA 2011-12)

6. Package List:

Red Hat Enterprise Linux AS version 4:

Source:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/thunderbird-1.5.0.12-38.el4.src.rpm

i386:
thunderbird-1.5.0.12-38.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-38.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.ia64.rpm

ppc:
thunderbird-1.5.0.12-38.el4.ppc.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.ppc.rpm

s390:
thunderbird-1.5.0.12-38.el4.s390.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.s390.rpm

s390x:
thunderbird-1.5.0.12-38.el4.s390x.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.s390x.rpm

x86_64:
thunderbird-1.5.0.12-38.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

Source:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/thunderbird-1.5.0.12-38.el4.src.rpm

i386:
thunderbird-1.5.0.12-38.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.i386.rpm

x86_64:
thunderbird-1.5.0.12-38.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

Source:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/thunderbird-1.5.0.12-38.el4.src.rpm

i386:
thunderbird-1.5.0.12-38.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-38.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.ia64.rpm

x86_64:
thunderbird-1.5.0.12-38.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

Source:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/thunderbird-1.5.0.12-38.el4.src.rpm

i386:
thunderbird-1.5.0.12-38.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-38.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.ia64.rpm

x86_64:
thunderbird-1.5.0.12-38.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-38.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop (v. 5 client):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/thunderbird-2.0.0.24-17.el5_6.src.rpm

i386:
thunderbird-2.0.0.24-17.el5_6.i386.rpm
thunderbird-debuginfo-2.0.0.24-17.el5_6.i386.rpm

x86_64:
thunderbird-2.0.0.24-17.el5_6.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-17.el5_6.x86_64.rpm

RHEL Optional Productivity Applications (v. 5 server):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/thunderbird-2.0.0.24-17.el5_6.src.rpm

i386:
thunderbird-2.0.0.24-17.el5_6.i386.rpm
thunderbird-debuginfo-2.0.0.24-17.el5_6.i386.rpm

x86_64:
thunderbird-2.0.0.24-17.el5_6.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-17.el5_6.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2011-0073.html
https://www.redhat.com/security/data/cve/CVE-2011-0074.html
https://www.redhat.com/security/data/cve/CVE-2011-0075.html
https://www.redhat.com/security/data/cve/CVE-2011-0077.html
https://www.redhat.com/security/data/cve/CVE-2011-0078.html
https://www.redhat.com/security/data/cve/CVE-2011-0080.html
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is &lt;secalert@redhat.com&gt;. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2011 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFNui8pXlSAg2UNWIIRAi9DAKCPCMFX0EM/xIk4WA2GnT5eaABTsACgwO3g
eg61ARvf9SaLkpjOpLrxqHA=
=QSpp
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2011:0475-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-0475.html
Issue date: 2011-04-28
CVE Names: CVE-2011-0070 CVE-2011-0071 CVE-2011-0073
CVE-2011-0074 CVE-2011-0075 CVE-2011-0077
CVE-2011-0078 CVE-2011-0080 CVE-2011-0081
================================================== ===================

1. Summary:

An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64
Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

Several flaws were found in the processing of malformed HTML content. An
HTML mail message containing malicious content could possibly lead to
arbitrary code execution with the privileges of the user running
Thunderbird. (CVE-2011-0080, CVE-2011-0081)

An arbitrary memory write flaw was found in the way Thunderbird handled
out-of-memory conditions. If all memory was consumed when a user viewed a
malicious HTML mail message, it could possibly lead to arbitrary code
execution with the privileges of the user running Thunderbird.
(CVE-2011-0078)

An integer overflow flaw was found in the way Thunderbird handled the HTML
frameset tag. An HTML mail message with a frameset tag containing large
values for the "rows" and "cols" attributes could trigger this flaw,
possibly leading to arbitrary code execution with the privileges of the
user running Thunderbird. (CVE-2011-0077)

A flaw was found in the way Thunderbird handled the HTML iframe tag. An
HTML mail message with an iframe tag containing a specially-crafted source
address could trigger this flaw, possibly leading to arbitrary code
execution with the privileges of the user running Thunderbird.
(CVE-2011-0075)

A flaw was found in the way Thunderbird displayed multiple marquee
elements. A malformed HTML mail message could cause Thunderbird to execute
arbitrary code with the privileges of the user running Thunderbird.
(CVE-2011-0074)

A flaw was found in the way Thunderbird handled the nsTreeSelection
element. Malformed content could cause Thunderbird to execute arbitrary
code with the privileges of the user running Thunderbird. (CVE-2011-0073)

A directory traversal flaw was found in the Thunderbird resource://
protocol handler. Malicious content could cause Thunderbird to access
arbitrary files accessible to the user running Thunderbird. (CVE-2011-0071)

A double free flaw was found in the way Thunderbird handled
"application/http-index-format" documents. A malformed HTTP response could
cause Thunderbird to execute arbitrary code with the privileges of the user
running Thunderbird. (CVE-2011-0070)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

700603 - CVE-2011-0078 Mozilla OOM condition arbitrary memory write (MFSA 2011-12)
700613 - CVE-2011-0077 Mozilla integer overflow in frameset spec (MFSA 2011-12)
700615 - CVE-2011-0075 Mozilla crash from bad iframe source (MFSA 2011-12)
700617 - CVE-2011-0074 Mozilla crash from several marquee elements (MFSA 2011-12)
700619 - CVE-2011-0073 Mozilla dangling pointer flaw (MFSA 2011-13)
700635 - CVE-2011-0071 Mozilla directory traversal via resource protocol (MFSA 2011-16)
700640 - CVE-2011-0070 Mozilla double free flaw (MFSA 2011-12)
700676 - CVE-2011-0081 Mozilla memory safety issue (MFSA 2011-12)
700677 - CVE-2011-0080 Mozilla memory safety issue (MFSA 2011-12)

6. Package List:

Red Hat Enterprise Linux Desktop (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/thunderbird-3.1.10-1.el6_0.src.rpm

i386:
thunderbird-3.1.10-1.el6_0.i686.rpm
thunderbird-debuginfo-3.1.10-1.el6_0.i686.rpm

x86_64:
thunderbird-3.1.10-1.el6_0.x86_64.rpm
thunderbird-debuginfo-3.1.10-1.el6_0.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/thunderbird-3.1.10-1.el6_0.src.rpm

i386:
thunderbird-3.1.10-1.el6_0.i686.rpm
thunderbird-debuginfo-3.1.10-1.el6_0.i686.rpm

ppc64:
thunderbird-3.1.10-1.el6_0.ppc64.rpm
thunderbird-debuginfo-3.1.10-1.el6_0.ppc64.rpm

s390x:
thunderbird-3.1.10-1.el6_0.s390x.rpm
thunderbird-debuginfo-3.1.10-1.el6_0.s390x.rpm

x86_64:
thunderbird-3.1.10-1.el6_0.x86_64.rpm
thunderbird-debuginfo-3.1.10-1.el6_0.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/thunderbird-3.1.10-1.el6_0.src.rpm

i386:
thunderbird-3.1.10-1.el6_0.i686.rpm
thunderbird-debuginfo-3.1.10-1.el6_0.i686.rpm

x86_64:
thunderbird-3.1.10-1.el6_0.x86_64.rpm
thunderbird-debuginfo-3.1.10-1.el6_0.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2011-0070.html
https://www.redhat.com/security/data/cve/CVE-2011-0071.html
https://www.redhat.com/security/data/cve/CVE-2011-0073.html
https://www.redhat.com/security/data/cve/CVE-2011-0074.html
https://www.redhat.com/security/data/cve/CVE-2011-0075.html
https://www.redhat.com/security/data/cve/CVE-2011-0077.html
https://www.redhat.com/security/data/cve/CVE-2011-0078.html
https://www.redhat.com/security/data/cve/CVE-2011-0080.html
https://www.redhat.com/security/data/cve/CVE-2011-0081.html
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is &lt;secalert@redhat.com&gt;. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2011 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFNui9DXlSAg2UNWIIRAoeoAJ4ya/1EwQejBTS3GIHxJ28XZPaaAACfdqWO
6zGD+t7ZjDNi3ZpVMJxHcVY=
=0F4L
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2011:0886-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-0886.html
Issue date: 2011-06-21
CVE Names: CVE-2011-0083 CVE-2011-0085 CVE-2011-2362
CVE-2011-2363 CVE-2011-2364 CVE-2011-2365
CVE-2011-2374 CVE-2011-2375 CVE-2011-2376
CVE-2011-2377
================================================== ===================

1. Summary:

An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64
Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

A flaw was found in the way Thunderbird handled malformed JPEG images. An
HTML mail message containing a malicious JPEG image could cause Thunderbird
to crash or, potentially, execute arbitrary code with the privileges of the
user running Thunderbird. (CVE-2011-2377)

Multiple dangling pointer flaws were found in Thunderbird. Malicious HTML
content could cause Thunderbird to crash or, potentially, execute arbitrary
code with the privileges of the user running Thunderbird. (CVE-2011-0083,
CVE-2011-0085, CVE-2011-2363)

Several flaws were found in the processing of malformed HTML content.
Malicious HTML content could cause Thunderbird to crash or, potentially,
execute arbitrary code with the privileges of the user running Thunderbird.
(CVE-2011-2364, CVE-2011-2365, CVE-2011-2374, CVE-2011-2375, CVE-2011-2376)

It was found that Thunderbird could treat two separate cookies (for web
content) as interchangeable if both were for the same domain name but one
of those domain names had a trailing "." character. This violates the
same-origin policy and could possibly lead to data being leaked to the
wrong domain. (CVE-2011-2362)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

714576 - CVE-2011-2364, CVE-2011-2365, CVE-2011-2374, CVE-2011-2375, CVE-2011-2376 Mozilla Miscellaneous memory safety hazards (MFSA 2011-19)
714581 - CVE-2011-0083 CVE-2011-0085 CVE-2011-2363 Mozilla Multiple dangling pointer vulnerabilities (MFSA 2011-23)
714583 - CVE-2011-2362 Mozilla Cookie isolation error (MFSA 2011-24)
714929 - CVE-2011-2377 Mozilla Crash caused by corrupted JPEG image (MFSA 2011-21)

6. Package List:

Red Hat Enterprise Linux Desktop (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/thunderbird-3.1.11-2.el6_1.src.rpm

i386:
thunderbird-3.1.11-2.el6_1.i686.rpm
thunderbird-debuginfo-3.1.11-2.el6_1.i686.rpm

x86_64:
thunderbird-3.1.11-2.el6_1.x86_64.rpm
thunderbird-debuginfo-3.1.11-2.el6_1.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/thunderbird-3.1.11-2.el6_1.src.rpm

i386:
thunderbird-3.1.11-2.el6_1.i686.rpm
thunderbird-debuginfo-3.1.11-2.el6_1.i686.rpm

ppc64:
thunderbird-3.1.11-2.el6_1.ppc64.rpm
thunderbird-debuginfo-3.1.11-2.el6_1.ppc64.rpm

s390x:
thunderbird-3.1.11-2.el6_1.s390x.rpm
thunderbird-debuginfo-3.1.11-2.el6_1.s390x.rpm

x86_64:
thunderbird-3.1.11-2.el6_1.x86_64.rpm
thunderbird-debuginfo-3.1.11-2.el6_1.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/thunderbird-3.1.11-2.el6_1.src.rpm

i386:
thunderbird-3.1.11-2.el6_1.i686.rpm
thunderbird-debuginfo-3.1.11-2.el6_1.i686.rpm

x86_64:
thunderbird-3.1.11-2.el6_1.x86_64.rpm
thunderbird-debuginfo-3.1.11-2.el6_1.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2011-0083.html
https://www.redhat.com/security/data/cve/CVE-2011-0085.html
https://www.redhat.com/security/data/cve/CVE-2011-2362.html
https://www.redhat.com/security/data/cve/CVE-2011-2363.html
https://www.redhat.com/security/data/cve/CVE-2011-2364.html
https://www.redhat.com/security/data/cve/CVE-2011-2365.html
https://www.redhat.com/security/data/cve/CVE-2011-2374.html
https://www.redhat.com/security/data/cve/CVE-2011-2375.html
https://www.redhat.com/security/data/cve/CVE-2011-2376.html
https://www.redhat.com/security/data/cve/CVE-2011-2377.html
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2011 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFOAShgXlSAg2UNWIIRAqrWAJ9QUfQDwAYWpt7cXQpmAj ALanc6XQCgmbWo
Wj3US3Jt6nEUp/r6kFPTTwY=
=fcyp
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2011:0887-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-0887.html
Issue date: 2011-06-21
CVE Names: CVE-2011-0083 CVE-2011-0085 CVE-2011-2362
CVE-2011-2363 CVE-2011-2364 CVE-2011-2365
CVE-2011-2371 CVE-2011-2373 CVE-2011-2374
CVE-2011-2375 CVE-2011-2376 CVE-2011-2377
================================================== ===================

1. Summary:

An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 4 and 5.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

RHEL Optional Productivity Applications (v. 5 server) - i386, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

A flaw was found in the way Thunderbird handled malformed JPEG images. An
HTML mail message containing a malicious JPEG image could cause Thunderbird
to crash or, potentially, execute arbitrary code with the privileges of the
user running Thunderbird. (CVE-2011-2377)

Multiple dangling pointer flaws were found in Thunderbird. Malicious HTML
content could cause Thunderbird to crash or, potentially, execute arbitrary
code with the privileges of the user running Thunderbird. (CVE-2011-0083,
CVE-2011-0085, CVE-2011-2363)

Several flaws were found in the processing of malformed HTML content.
Malicious HTML content could cause Thunderbird to crash or, potentially,
execute arbitrary code with the privileges of the user running Thunderbird.
(CVE-2011-2364, CVE-2011-2365, CVE-2011-2374, CVE-2011-2375, CVE-2011-2376)

An integer overflow flaw was found in the way Thunderbird handled
JavaScript Array objects. Malicious content could cause Thunderbird to
execute JavaScript with the privileges of the user running Thunderbird.
(CVE-2011-2371)

A use-after-free flaw was found in the way Thunderbird handled malformed
JavaScript. Malicious content could cause Thunderbird to execute JavaScript
with the privileges of the user running Thunderbird. (CVE-2011-2373)

It was found that Thunderbird could treat two separate cookies (for web
content) as interchangeable if both were for the same domain name but one
of those domain names had a trailing "." character. This violates the
same-origin policy and could possibly lead to data being leaked to the
wrong domain. (CVE-2011-2362)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

714576 - CVE-2011-2364, CVE-2011-2365, CVE-2011-2374, CVE-2011-2375, CVE-2011-2376 Mozilla Miscellaneous memory safety hazards (MFSA 2011-19)
714577 - CVE-2011-2373 Mozilla Use-after-free vulnerability when viewing XUL document with script disabled (MFSA 2011-20)
714580 - CVE-2011-2371 Mozilla Integer overflow and arbitrary code execution (MFSA 2011-22)
714581 - CVE-2011-0083 CVE-2011-0085 CVE-2011-2363 Mozilla Multiple dangling pointer vulnerabilities (MFSA 2011-23)
714583 - CVE-2011-2362 Mozilla Cookie isolation error (MFSA 2011-24)
714929 - CVE-2011-2377 Mozilla Crash caused by corrupted JPEG image (MFSA 2011-21)

6. Package List:

Red Hat Enterprise Linux AS version 4:

Source:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/thunderbird-1.5.0.12-39.el4.src.rpm

i386:
thunderbird-1.5.0.12-39.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-39.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.ia64.rpm

ppc:
thunderbird-1.5.0.12-39.el4.ppc.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.ppc.rpm

s390:
thunderbird-1.5.0.12-39.el4.s390.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.s390.rpm

s390x:
thunderbird-1.5.0.12-39.el4.s390x.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.s390x.rpm

x86_64:
thunderbird-1.5.0.12-39.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

Source:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/thunderbird-1.5.0.12-39.el4.src.rpm

i386:
thunderbird-1.5.0.12-39.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.i386.rpm

x86_64:
thunderbird-1.5.0.12-39.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

Source:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/thunderbird-1.5.0.12-39.el4.src.rpm

i386:
thunderbird-1.5.0.12-39.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-39.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.ia64.rpm

x86_64:
thunderbird-1.5.0.12-39.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

Source:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/thunderbird-1.5.0.12-39.el4.src.rpm

i386:
thunderbird-1.5.0.12-39.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-39.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.ia64.rpm

x86_64:
thunderbird-1.5.0.12-39.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-39.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop (v. 5 client):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/thunderbird-2.0.0.24-18.el5_6.src.rpm

i386:
thunderbird-2.0.0.24-18.el5_6.i386.rpm
thunderbird-debuginfo-2.0.0.24-18.el5_6.i386.rpm

x86_64:
thunderbird-2.0.0.24-18.el5_6.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-18.el5_6.x86_64.rpm

RHEL Optional Productivity Applications (v. 5 server):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/thunderbird-2.0.0.24-18.el5_6.src.rpm

i386:
thunderbird-2.0.0.24-18.el5_6.i386.rpm
thunderbird-debuginfo-2.0.0.24-18.el5_6.i386.rpm

x86_64:
thunderbird-2.0.0.24-18.el5_6.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-18.el5_6.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2011-0083.html
https://www.redhat.com/security/data/cve/CVE-2011-0085.html
https://www.redhat.com/security/data/cve/CVE-2011-2362.html
https://www.redhat.com/security/data/cve/CVE-2011-2363.html
https://www.redhat.com/security/data/cve/CVE-2011-2364.html
https://www.redhat.com/security/data/cve/CVE-2011-2365.html
https://www.redhat.com/security/data/cve/CVE-2011-2371.html
https://www.redhat.com/security/data/cve/CVE-2011-2373.html
https://www.redhat.com/security/data/cve/CVE-2011-2374.html
https://www.redhat.com/security/data/cve/CVE-2011-2375.html
https://www.redhat.com/security/data/cve/CVE-2011-2376.html
https://www.redhat.com/security/data/cve/CVE-2011-2377.html
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2011 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFOASiIXlSAg2UNWIIRAtZYAJ9ZBRu60zLLdoBrUyCrIZ y0/phyMgCgky71
r+NwqFOqCUeak8TCpitMBnk=
=QSbg
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2011:1165-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-1165.html
Issue date: 2011-08-16
CVE Names: CVE-2011-2982 CVE-2011-2983
================================================== ===================

1. Summary:

An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 4 and 5.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

RHEL Optional Productivity Applications (v. 5 server) - i386, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

Several flaws were found in the processing of malformed HTML content.
Malicious HTML content could cause Thunderbird to crash or, potentially,
execute arbitrary code with the privileges of the user running
Thunderbird. (CVE-2011-2982)

A flaw was found in the way Thunderbird handled malformed JavaScript.
Malicious content could cause Thunderbird to access already freed memory,
causing Thunderbird to crash or, potentially, execute arbitrary code with
the privileges of the user running Thunderbird. (CVE-2011-2983)

Note: This update disables support for Scalable Vector Graphics (SVG)
images in Thunderbird on Red Hat Enterprise Linux 5.

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

730518 - CVE-2011-2982 Mozilla: Miscellaneous memory safety hazards
730523 - CVE-2011-2983 Mozilla: Private data leakage using RegExp.input

6. Package List:

Red Hat Enterprise Linux AS version 4:

Source:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/thunderbird-1.5.0.12-40.el4.src.rpm

i386:
thunderbird-1.5.0.12-40.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-40.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.ia64.rpm

ppc:
thunderbird-1.5.0.12-40.el4.ppc.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.ppc.rpm

s390:
thunderbird-1.5.0.12-40.el4.s390.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.s390.rpm

s390x:
thunderbird-1.5.0.12-40.el4.s390x.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.s390x.rpm

x86_64:
thunderbird-1.5.0.12-40.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

Source:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/thunderbird-1.5.0.12-40.el4.src.rpm

i386:
thunderbird-1.5.0.12-40.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.i386.rpm

x86_64:
thunderbird-1.5.0.12-40.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

Source:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/thunderbird-1.5.0.12-40.el4.src.rpm

i386:
thunderbird-1.5.0.12-40.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-40.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.ia64.rpm

x86_64:
thunderbird-1.5.0.12-40.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

Source:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/thunderbird-1.5.0.12-40.el4.src.rpm

i386:
thunderbird-1.5.0.12-40.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-40.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.ia64.rpm

x86_64:
thunderbird-1.5.0.12-40.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-40.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop (v. 5 client):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/thunderbird-2.0.0.24-21.el5.src.rpm

i386:
thunderbird-2.0.0.24-21.el5.i386.rpm
thunderbird-debuginfo-2.0.0.24-21.el5.i386.rpm

x86_64:
thunderbird-2.0.0.24-21.el5.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-21.el5.x86_64.rpm

RHEL Optional Productivity Applications (v. 5 server):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/thunderbird-2.0.0.24-21.el5.src.rpm

i386:
thunderbird-2.0.0.24-21.el5.i386.rpm
thunderbird-debuginfo-2.0.0.24-21.el5.i386.rpm

x86_64:
thunderbird-2.0.0.24-21.el5.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-21.el5.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2011-2982.html
https://www.redhat.com/security/data/cve/CVE-2011-2983.html
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2011 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFOSrylXlSAg2UNWIIRAr+BAJ4wt9eNBQ8G0Rr/eTjU5FNt9AgLagCgw1Qu
2XQEW9uCAxmj3d8tW2i9UyY=
=1QMp
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

Tue Aug 16 22:30:01 2011
Return-path: <gentoo-dev+bounces-47078-tom=linux-archive.org@lists.gentoo.org>
Envelope-to: tom@linux-archive.org
Delivery-date: Tue, 16 Aug 2011 22:28:21 +0300
Received: from pigeon.gentoo.org ([208.92.234.80]:50831 helo=lists.gentoo.org)
by s2.java-tips.org with esmtps (TLSv1:AES256-SHA:256)
(Exim 4.69)
(envelope-from <gentoo-dev+bounces-47078-tom=linux-archive.org@lists.gentoo.org>)
id 1QtPJF-0006RV-8X
for tom@linux-archive.org; Tue, 16 Aug 2011 22:28:21 +0300
Received: from pigeon.gentoo.org (localhost [127.0.0.1])
by pigeon.gentoo.org (Postfix) with SMTP id 6140121C217;
Tue, 16 Aug 2011 19:32:56 +0000 (UTC)
X-Original-To: gentoo-dev@lists.gentoo.org
Delivered-To: gentoo-dev@lists.gentoo.org
Received: from smtp.gentoo.org (smtp.gentoo.org [140.211.166.183])
by pigeon.gentoo.org (Postfix) with ESMTP id 8060021C108
for <gentoo-dev@lists.gentoo.org>; Tue, 16 Aug 2011 19:30:28 +0000 (UTC)
Received: from [130.149.144.41] (unknown [130.149.144.41])
(using TLSv1 with cipher DHE-RSA-CAMELLIA256-SHA (256/256 bits))
(No client certificate requested)
(Authenticated sender: chithanh)
by smtp.gentoo.org (Postfix) with ESMTPSA id 6F9FE1B4062
for <gentoo-dev@lists.gentoo.org>; Tue, 16 Aug 2011 19:30:27 +0000 (UTC)
Message-ID: <4E4AC554.2040100@gentoo.org>
Date: Tue, 16 Aug 2011 21:30:28 +0200
From: =?UTF-8?B?Q2jDrS1UaGFuaCBDaHJpc3RvcGhlciBOZ3V54buFbg==?=
<chithanh@gentoo.org>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:2.0.1) Gecko/20110816 Firefox/4.0.1 SeaMonkey/2.1
Precedence: bulk
List-Post: <mailto:gentoo-dev@lists.gentoo.org>
List-Help: <mailto:gentoo-dev+help@lists.gentoo.org>
List-Unsubscribe: <mailto:gentoo-dev+unsubscribe@lists.gentoo.org>
List-Subscribe: <mailto:gentoo-dev+subscribe@lists.gentoo.org>
List-Id: Gentoo Linux mail <gentoo-dev.gentoo.org>
X-BeenThere: gentoo-dev@lists.gentoo.org
Reply-to: gentoo-dev@lists.gentoo.org
MIME-Version: 1.0
To: gentoo-dev@lists.gentoo.org
Subject: Re: [gentoo-dev] USE=introspection has been unmasked in the tree
References: <CADqQcK4M3XDDFnX08kmPBsx806w5Q4XqxBwLRbYxf=6egWZh gQ@mail.gmail.com> <20110816185935.GH3818@comet.mayo.edu> <CADqQcK6CLLNtxcQA+G5ih+fnFtkgbeyQAd2nZ91nBAPOj1bZ wA@mail.gmail.com>
In-Reply-To: <CADqQcK6CLLNtxcQA+G5ih+fnFtkgbeyQAd2nZ91nBAPOj1bZ wA@mail.gmail.com>
X-Enigmail-Version: 1.2pre
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

Nirbheek Chauhan schrieb:
>>> A side-note that we've wanted to get out to all devs is that everyone
>>> should *always* use IUSE=3D"+introspection".
>> Then why is it a flag?
>>
> So that people who use, say, json-glib in embedded environments don't
> need to pull in a package that is quite unnecessary for them.
>

Then why don't you make it a default flag in desktop/gnome profile
instead? That way, the embedded users who don't use a desktop profile
won't even need to take action to disable the flag.


Best regards,
Ch=C3=AD-Thanh Christopher Nguyen

Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2011:1166-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-1166.html
Issue date: 2011-08-16
CVE Names: CVE-2011-0084 CVE-2011-2378 CVE-2011-2982
================================================== ===================

1. Summary:

An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64
Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

Several flaws were found in the processing of malformed HTML content.
Malicious HTML content could cause Thunderbird to crash or, potentially,
execute arbitrary code with the privileges of the user running Thunderbird.
(CVE-2011-2982)

A dangling pointer flaw was found in the Thunderbird Scalable Vector
Graphics (SVG) text manipulation routine. An HTML mail message containing a
malicious SVG image could cause Thunderbird to crash or, potentially,
execute arbitrary code with the privileges of the user running Thunderbird.
(CVE-2011-0084)

A dangling pointer flaw was found in the way Thunderbird handled a certain
Document Object Model (DOM) element. An HTML mail message containing
malicious content could cause Thunderbird to crash or, potentially, execute
arbitrary code with the privileges of the user running Thunderbird.
(CVE-2011-2378)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

730518 - CVE-2011-2982 Mozilla: Miscellaneous memory safety hazards
730519 - CVE-2011-0084 Mozilla: Crash in SVGTextElement.getCharNumAtPosition()
730521 - CVE-2011-2378 Mozilla: Dangling pointer vulnerability in appendChild

6. Package List:

Red Hat Enterprise Linux Desktop (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/thunderbird-3.1.12-1.el6_1.src.rpm

i386:
thunderbird-3.1.12-1.el6_1.i686.rpm
thunderbird-debuginfo-3.1.12-1.el6_1.i686.rpm

x86_64:
thunderbird-3.1.12-1.el6_1.x86_64.rpm
thunderbird-debuginfo-3.1.12-1.el6_1.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/thunderbird-3.1.12-1.el6_1.src.rpm

i386:
thunderbird-3.1.12-1.el6_1.i686.rpm
thunderbird-debuginfo-3.1.12-1.el6_1.i686.rpm

ppc64:
thunderbird-3.1.12-1.el6_1.ppc64.rpm
thunderbird-debuginfo-3.1.12-1.el6_1.ppc64.rpm

s390x:
thunderbird-3.1.12-1.el6_1.s390x.rpm
thunderbird-debuginfo-3.1.12-1.el6_1.s390x.rpm

x86_64:
thunderbird-3.1.12-1.el6_1.x86_64.rpm
thunderbird-debuginfo-3.1.12-1.el6_1.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/thunderbird-3.1.12-1.el6_1.src.rpm

i386:
thunderbird-3.1.12-1.el6_1.i686.rpm
thunderbird-debuginfo-3.1.12-1.el6_1.i686.rpm

x86_64:
thunderbird-3.1.12-1.el6_1.x86_64.rpm
thunderbird-debuginfo-3.1.12-1.el6_1.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2011-0084.html
https://www.redhat.com/security/data/cve/CVE-2011-2378.html
https://www.redhat.com/security/data/cve/CVE-2011-2982.html
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2011 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFOSrzNXlSAg2UNWIIRAvJDAKCGxLPuwXGivmeN+Xl+EE pdZG+mZACeOGAZ
eldxZE+zlrUwMUP1DxGVUP4=
=7UAu
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2011:1342-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-1342.html
Issue date: 2011-09-28
CVE Names: CVE-2011-2372 CVE-2011-2995 CVE-2011-2998
CVE-2011-2999 CVE-2011-3000
================================================== ===================

1. Summary:

An updated thunderbird package that fixes several security issues is now
available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

Red Hat Enterprise Linux Desktop (v. 6) - i386, x86_64
Red Hat Enterprise Linux Server Optional (v. 6) - i386, ppc64, s390x, x86_64
Red Hat Enterprise Linux Workstation (v. 6) - i386, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

Several flaws were found in the processing of malformed HTML content. An
HTML mail message containing malicious content could cause Thunderbird to
crash or, potentially, execute arbitrary code with the privileges of the
user running Thunderbird. (CVE-2011-2995)

A flaw was found in the way Thunderbird processed the "Enter" keypress
event. A malicious HTML mail message could present a download dialog while
the key is pressed, activating the default "Open" action. A remote attacker
could exploit this vulnerability by causing the mail client to open
malicious web content. (CVE-2011-2372)

A flaw was found in the way Thunderbird handled Location headers in
redirect responses. Two copies of this header with different values could
be a symptom of a CRLF injection attack against a vulnerable server.
Thunderbird now treats two copies of the Location, Content-Length, or
Content-Disposition header as an error condition. (CVE-2011-3000)

A flaw was found in the way Thunderbird handled frame objects with certain
names. An attacker could use this flaw to cause a plug-in to grant its
content access to another site or the local file system, violating the
same-origin policy. (CVE-2011-2999)

An integer underflow flaw was found in the way Thunderbird handled large
JavaScript regular expressions. An HTML mail message containing malicious
JavaScript could cause Thunderbird to access already freed memory, causing
Thunderbird to crash or, potentially, execute arbitrary code with the
privileges of the user running Thunderbird. (CVE-2011-2998)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

741902 - CVE-2011-2995 Mozilla: Miscellaneous memory safety hazards (MFSA 2011-36)
741904 - CVE-2011-2999 Mozilla: XSS via plugins and shadowed window.location object (MFSA 2011-38)
741905 - CVE-2011-3000 Mozilla:Defense against multiple Location headers due to CRLF Injection (MFSA 2011-39)
741917 - CVE-2011-2372 Mozilla:Code installation through holding down Enter (MFSA 2011-40)
741924 - CVE-2011-2998 Mozilla: Integer underflow when using JavaScript RegExp (MFSA 2011-37)

6. Package List:

Red Hat Enterprise Linux Desktop (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Client/en/os/SRPMS/thunderbird-3.1.15-1.el6_1.src.rpm

i386:
thunderbird-3.1.15-1.el6_1.i686.rpm
thunderbird-debuginfo-3.1.15-1.el6_1.i686.rpm

x86_64:
thunderbird-3.1.15-1.el6_1.x86_64.rpm
thunderbird-debuginfo-3.1.15-1.el6_1.x86_64.rpm

Red Hat Enterprise Linux Server Optional (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Server/en/os/SRPMS/thunderbird-3.1.15-1.el6_1.src.rpm

i386:
thunderbird-3.1.15-1.el6_1.i686.rpm
thunderbird-debuginfo-3.1.15-1.el6_1.i686.rpm

ppc64:
thunderbird-3.1.15-1.el6_1.ppc64.rpm
thunderbird-debuginfo-3.1.15-1.el6_1.ppc64.rpm

s390x:
thunderbird-3.1.15-1.el6_1.s390x.rpm
thunderbird-debuginfo-3.1.15-1.el6_1.s390x.rpm

x86_64:
thunderbird-3.1.15-1.el6_1.x86_64.rpm
thunderbird-debuginfo-3.1.15-1.el6_1.x86_64.rpm

Red Hat Enterprise Linux Workstation (v. 6):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/6Workstation/en/os/SRPMS/thunderbird-3.1.15-1.el6_1.src.rpm

i386:
thunderbird-3.1.15-1.el6_1.i686.rpm
thunderbird-debuginfo-3.1.15-1.el6_1.i686.rpm

x86_64:
thunderbird-3.1.15-1.el6_1.x86_64.rpm
thunderbird-debuginfo-3.1.15-1.el6_1.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2011-2372.html
https://www.redhat.com/security/data/cve/CVE-2011-2995.html
https://www.redhat.com/security/data/cve/CVE-2011-2998.html
https://www.redhat.com/security/data/cve/CVE-2011-2999.html
https://www.redhat.com/security/data/cve/CVE-2011-3000.html
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2011 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFOg7SRXlSAg2UNWIIRAvXNAJ9A5WTk9dnUM9pjIPqVEG NIztvAJgCfaNNf
ziYA0fTwhL8zzAykZqwxpeo=
=OK/t
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list

Critical: thunderbird security update
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

================================================== ===================
Red Hat Security Advisory

Synopsis: Critical: thunderbird security update
Advisory ID: RHSA-2011:1343-01
Product: Red Hat Enterprise Linux
Advisory URL: https://rhn.redhat.com/errata/RHSA-2011-1343.html
Issue date: 2011-09-28
CVE Names: CVE-2011-2998 CVE-2011-2999
================================================== ===================

1. Summary:

An updated thunderbird package that fixes two security issues is now
available for Red Hat Enterprise Linux 4 and 5.

The Red Hat Security Response Team has rated this update as having critical
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

2. Relevant releases/architectures:

RHEL Optional Productivity Applications (v. 5 server) - i386, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop (v. 5 client) - i386, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Description:

Mozilla Thunderbird is a standalone mail and newsgroup client.

A flaw was found in the way Thunderbird handled frame objects with certain
names. An attacker could use this flaw to cause a plug-in to grant its
content access to another site or the local file system, violating the
same-origin policy. (CVE-2011-2999)

An integer underflow flaw was found in the way Thunderbird handled large
JavaScript regular expressions. An HTML mail message containing malicious
JavaScript could cause Thunderbird to access already freed memory, causing
Thunderbird to crash or, potentially, execute arbitrary code with the
privileges of the user running Thunderbird. (CVE-2011-2998)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

741904 - CVE-2011-2999 Mozilla: XSS via plugins and shadowed window.location object (MFSA 2011-38)
741924 - CVE-2011-2998 Mozilla: Integer underflow when using JavaScript RegExp (MFSA 2011-37)

6. Package List:

Red Hat Enterprise Linux AS version 4:

Source:
ftp://updates.redhat.com/enterprise/4AS/en/os/SRPMS/thunderbird-1.5.0.12-44.el4.src.rpm

i386:
thunderbird-1.5.0.12-44.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-44.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.ia64.rpm

ppc:
thunderbird-1.5.0.12-44.el4.ppc.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.ppc.rpm

s390:
thunderbird-1.5.0.12-44.el4.s390.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.s390.rpm

s390x:
thunderbird-1.5.0.12-44.el4.s390x.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.s390x.rpm

x86_64:
thunderbird-1.5.0.12-44.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

Source:
ftp://updates.redhat.com/enterprise/4Desktop/en/os/SRPMS/thunderbird-1.5.0.12-44.el4.src.rpm

i386:
thunderbird-1.5.0.12-44.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.i386.rpm

x86_64:
thunderbird-1.5.0.12-44.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

Source:
ftp://updates.redhat.com/enterprise/4ES/en/os/SRPMS/thunderbird-1.5.0.12-44.el4.src.rpm

i386:
thunderbird-1.5.0.12-44.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-44.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.ia64.rpm

x86_64:
thunderbird-1.5.0.12-44.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

Source:
ftp://updates.redhat.com/enterprise/4WS/en/os/SRPMS/thunderbird-1.5.0.12-44.el4.src.rpm

i386:
thunderbird-1.5.0.12-44.el4.i386.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.i386.rpm

ia64:
thunderbird-1.5.0.12-44.el4.ia64.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.ia64.rpm

x86_64:
thunderbird-1.5.0.12-44.el4.x86_64.rpm
thunderbird-debuginfo-1.5.0.12-44.el4.x86_64.rpm

Red Hat Enterprise Linux Desktop (v. 5 client):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Client/en/os/SRPMS/thunderbird-2.0.0.24-26.el5_7.src.rpm

i386:
thunderbird-2.0.0.24-26.el5_7.i386.rpm
thunderbird-debuginfo-2.0.0.24-26.el5_7.i386.rpm

x86_64:
thunderbird-2.0.0.24-26.el5_7.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-26.el5_7.x86_64.rpm

RHEL Optional Productivity Applications (v. 5 server):

Source:
ftp://ftp.redhat.com/pub/redhat/linux/enterprise/5Server/en/os/SRPMS/thunderbird-2.0.0.24-26.el5_7.src.rpm

i386:
thunderbird-2.0.0.24-26.el5_7.i386.rpm
thunderbird-debuginfo-2.0.0.24-26.el5_7.i386.rpm

x86_64:
thunderbird-2.0.0.24-26.el5_7.x86_64.rpm
thunderbird-debuginfo-2.0.0.24-26.el5_7.x86_64.rpm

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from
https://access.redhat.com/security/team/key/#package

7. References:

https://www.redhat.com/security/data/cve/CVE-2011-2998.html
https://www.redhat.com/security/data/cve/CVE-2011-2999.html
https://access.redhat.com/security/updates/classification/#critical

8. Contact:

The Red Hat security contact is <secalert@redhat.com>. More contact
details at https://access.redhat.com/security/team/contact/

Copyright 2011 Red Hat, Inc.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.4 (GNU/Linux)

iD8DBQFOg7SyXlSAg2UNWIIRAhfAAKCqsYz45BKwoG31J2wcnQ YPo7v9VACaAwGk
MD8EPt+QqkmcNaYzh4P+ZCc=
=9hnI
-----END PGP SIGNATURE-----


--
Enterprise-watch-list mailing list
Enterprise-watch-list@redhat.com
https://www.redhat.com/mailman/listinfo/enterprise-watch-list