Oval Definition:oval:com.redhat.rhsa:def:20172534
Revision Date:2017-08-24Version:635
Title:RHSA-2017:2534: thunderbird security update (Important)
Description:Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 52.3.0.

Security Fix(es):

  • Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-7779, CVE-2017-7800, CVE-2017-7801, CVE-2017-7753, CVE-2017-7784, CVE-2017-7785, CVE-2017-7786, CVE-2017-7787, CVE-2017-7792, CVE-2017-7802, CVE-2017-7807, CVE-2017-7809, CVE-2017-7791, CVE-2017-7803)

    Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Mozilla developers and community, Looben Yang, Nils, SkyLined, Oliver Wagner, Fraser Tweedale, Mathias Karlsson, Jose María Acuña, and Rhys Enniks as the original reporters.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2017-7753
    CVE-2017-7779
    CVE-2017-7784
    CVE-2017-7785
    CVE-2017-7786
    CVE-2017-7787
    CVE-2017-7791
    CVE-2017-7792
    CVE-2017-7800
    CVE-2017-7801
    CVE-2017-7802
    CVE-2017-7803
    CVE-2017-7807
    CVE-2017-7809
    RHSA-2017:2534
    RHSA-2017:2534-00
    RHSA-2017:2534-01
    Platform(s):Red Hat Enterprise Linux 6
    Red Hat Enterprise Linux 7
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 6 is installed
  • AND thunderbird is earlier than 0:52.3.0-1.el6_9
  • AND thunderbird is signed with Red Hat redhatrelease2 key
  • OR Package Information
  • Red Hat Enterprise Linux 7 is installed
  • AND thunderbird is earlier than 0:52.3.0-1.el7_4
  • AND thunderbird is signed with Red Hat redhatrelease2 key
    • BACK