SUSE-SU-2021:1854-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:1854-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2021:1854-1
- Related
- Published
- 2021-06-04T06:54:13Z
- Modified
- 2021-06-04T06:54:13Z
- Summary
- Security update for MozillaThunderbird
- Details
-
This update for MozillaThunderbird fixes the following issues:
- Mozilla Thunderbird 78.10.2
- CVE-2021-29957: Fixed partial protection of inline OpenPGP message not indicated (bsc#1186198).
- CVE-2021-29956: Fixed Thunderbird stored OpenPGP secret keys without master password protection (bsc#1186199).
- CVE-2021-29951: Fixed Thunderbird Maintenance Service could have been started or stopped by domain users (bsc#1185633).
- CVE-2021-29950: Fixed logic issue potentially leaves key material unlocked (bsc#1185086).
- References
-
- https://www.suse.com/support/update/announcement/2021/suse-su-20211854-1/
- https://bugzilla.suse.com/1185086
- https://bugzilla.suse.com/1185633
- https://bugzilla.suse.com/1186198
- https://bugzilla.suse.com/1186199
- https://www.suse.com/security/cve/CVE-2021-29950
- https://www.suse.com/security/cve/CVE-2021-29951
- https://www.suse.com/security/cve/CVE-2021-29956
- https://www.suse.com/security/cve/CVE-2021-29957
Affected packages
SUSE:Linux Enterprise Workstation Extension 15 SP2 / MozillaThunderbird
Package
- Name
- MozillaThunderbird
- Purl
- purl:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2