Synopsis: Important: thunderbird security update Advisory ID: SLSA-2020:2613-1 Issue Date: 2020-06-19 CVE Numbers: None -- Security Fix(es): * Mozilla: Security downgrade with IMAP STARTTLS leads to information leakage (CVE-2020-12398) * Mozilla: Use-after-free in SharedWorkerService (CVE-2020-12405) * Mozilla: JavaScript Type confusion with NativeTypes (CVE-2020-12406) * Mozilla: Memory safety bugs fixed in Firefox 77 and Firefox ESR 68.9 (CVE-2020-12410) -- SL6 x86_64 thunderbird-68.9.0-1.el6_10.x86_64.rpm thunderbird-debuginfo-68.9.0-1.el6_10.x86_64.rpm i386 thunderbird-68.9.0-1.el6_10.i686.rpm thunderbird-debuginfo-68.9.0-1.el6_10.i686.rpm - Scientific Linux Development Team