Issued:: 2020-11-23
Updated:: 2020-11-23

RHSA-2020:5167 - Security Advisory

Overview
Updated Packages

Synopsis

Important: thunderbird security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for thunderbird is now available for Red Hat Enterprise Linux 8.0 Update Services for SAP Solutions.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Mozilla Thunderbird is a standalone mail and newsgroup client.

This update upgrades Thunderbird to version 78.4.3.

Security Fix(es):

Mozilla: Write side effects in MCallGetProperty opcode not accounted for (CVE-2020-26950)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

All running instances of Thunderbird must be restarted for the update to take effect.

Affected Products

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.0 ppc64le
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.0 x86_64

Fixes

BZ - 1896306 - CVE-2020-26950 Mozilla: Write side effects in MCallGetProperty opcode not accounted for

CVEs

CVE-2020-26950

References

https://access.redhat.com/security/updates/classification/#important

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.0

SRPM
thunderbird-78.4.3-1.el8_0.src.rpm	SHA-256: a57af41e2144f355f710710fa4b868844b518b67fc548935c5a7632ee2651220
ppc64le
thunderbird-78.4.3-1.el8_0.ppc64le.rpm	SHA-256: 8979f1bab174aea59688b05eaf2eac388485a2d13fdbe1eb5fe3075a63c2f186
thunderbird-debuginfo-78.4.3-1.el8_0.ppc64le.rpm	SHA-256: c24345ee6ec7e7b32ead9119e64b6a8b9d28ac47d346743e438ddb6a241c2bdc
thunderbird-debugsource-78.4.3-1.el8_0.ppc64le.rpm	SHA-256: 46a2af3300e236a8a7edd80c6f462f77a230975ab19f1e8ed7564f8a90ea0989

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.0

SRPM
thunderbird-78.4.3-1.el8_0.src.rpm	SHA-256: a57af41e2144f355f710710fa4b868844b518b67fc548935c5a7632ee2651220
x86_64
thunderbird-78.4.3-1.el8_0.x86_64.rpm	SHA-256: 49cf88c02c66193c87e86fe6b5e76554159ae8f9de1db68ea0a3d5e3b4d979a2
thunderbird-debuginfo-78.4.3-1.el8_0.x86_64.rpm	SHA-256: 266e47839a7183f4df6972da50009c9363cf35482b83606d09d490df8f635236
thunderbird-debugsource-78.4.3-1.el8_0.x86_64.rpm	SHA-256: 8ec11d69da8e66bfff6fe786a65c4177cc08a6b49880749650c970cf86494824

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation