Synopsis: Important: thunderbird security update Advisory ID: SLSA-2020:1489-1 Issue Date: 2020-04-16 CVE Numbers: None -- Security Fix(es): * Mozilla: Use-after-free while running the nsDocShell destructor (CVE-2020-6819) * Mozilla: Use-after-free when handling a ReadableStream (CVE-2020-6820) * Mozilla: Uninitialized memory could be read when using the WebGL copyTexSubImage method (CVE-2020-6821) * Mozilla: Memory safety bugs fixed in Firefox 75 and Firefox ESR 68.7 (CVE-2020-6825) * Mozilla: Out of bounds write in GMPDecodeData when processing large images (CVE-2020-6822) -- SL7 x86_64 thunderbird-68.7.0-1.el7_8.x86_64.rpm thunderbird-debuginfo-68.7.0-1.el7_8.x86_64.rpm - Scientific Linux Development Team