Synopsis: Important: thunderbird security update Advisory ID: SLSA-2022:6998-1 Issue Date: 2022-10-19 CVE Numbers: CVE-2022-40674 -- This update upgrades Thunderbird to version 102.3.0. Security Fix(es): * expat: a use-after-free in the doContent function in xmlparse.c (CVE-2022-40674) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE -- SL7 x86_64 thunderbird-102.3.0-4.el7_9.x86_64.rpm thunderbird-debuginfo-102.3.0-4.el7_9.x86_64.rpm - Scientific Linux Development Team