Red Hat Local Security Checks : RedHat Update for thunderbird RHSA-2017:3372-01

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.812500

Kategorie: Red Hat Local Security Checks

Titel: RedHat Update for thunderbird RHSA-2017:3372-01

Zusammenfassung: The remote host is missing an update for the 'thunderbird'; package(s) announced via the referenced advisory.

Beschreibung: Summary:
The remote host is missing an update for the 'thunderbird'
package(s) announced via the referenced advisory.

Vulnerability Insight:
Mozilla Thunderbird is a standalone mail and
newsgroup client. This update upgrades Thunderbird to version 52.5.0. Security
Fix(es): * Multiple flaws were found in the processing of malformed web content.
A web page containing malicious content could cause Thunderbird to crash or,
potentially, execute arbitrary code with the privileges of the user running
Thunderbird. (CVE-2017-7826, CVE-2017-7828, CVE-2017-7830) Red Hat would like to
thank the Mozilla project for reporting these issues. Upstream acknowledges
Christian Holler, David Keeler, Jon Coppeard, Julien Cristau, Jan de Mooij,
Jason Kratzer, Philipp, Nicholas Nethercote, Oriol Brufau, Andr Bargull, Bob
Clary, Jet Villegas, Randell Jesup, Tyson Smith, Gary Kwong, Ryan VanderMeulen,
Nils, and Jun Kokatsu as the original reporters.

Affected Software/OS:
thunderbird on Red Hat Enterprise Linux Desktop (v. 6),
Red Hat Enterprise Linux Workstation (v. 6)

Solution:
Please Install the Updated Packages.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2017-7826
BugTraq ID: 101832
http://www.securityfocus.com/bid/101832
Debian Security Information: DSA-4035 (Google Search)
https://www.debian.org/security/2017/dsa-4035
Debian Security Information: DSA-4061 (Google Search)
https://www.debian.org/security/2017/dsa-4061
Debian Security Information: DSA-4075 (Google Search)
https://www.debian.org/security/2017/dsa-4075
https://lists.debian.org/debian-lts-announce/2017/11/msg00018.html
https://lists.debian.org/debian-lts-announce/2017/12/msg00001.html
RedHat Security Advisories: RHSA-2017:3247
https://access.redhat.com/errata/RHSA-2017:3247
RedHat Security Advisories: RHSA-2017:3372
https://access.redhat.com/errata/RHSA-2017:3372
http://www.securitytracker.com/id/1039803
https://usn.ubuntu.com/3688-1/
Common Vulnerability Exposure (CVE) ID: CVE-2017-7828
Common Vulnerability Exposure (CVE) ID: CVE-2017-7830

Copyright Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.812500
Kategorie:	Red Hat Local Security Checks
Titel:	RedHat Update for thunderbird RHSA-2017:3372-01
Zusammenfassung:	The remote host is missing an update for the 'thunderbird'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'thunderbird' package(s) announced via the referenced advisory. Vulnerability Insight: Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 52.5.0. Security Fix(es): * Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird. (CVE-2017-7826, CVE-2017-7828, CVE-2017-7830) Red Hat would like to thank the Mozilla project for reporting these issues. Upstream acknowledges Christian Holler, David Keeler, Jon Coppeard, Julien Cristau, Jan de Mooij, Jason Kratzer, Philipp, Nicholas Nethercote, Oriol Brufau, Andr Bargull, Bob Clary, Jet Villegas, Randell Jesup, Tyson Smith, Gary Kwong, Ryan VanderMeulen, Nils, and Jun Kokatsu as the original reporters. Affected Software/OS: thunderbird on Red Hat Enterprise Linux Desktop (v. 6), Red Hat Enterprise Linux Workstation (v. 6) Solution: Please Install the Updated Packages. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7826 BugTraq ID: 101832 http://www.securityfocus.com/bid/101832 Debian Security Information: DSA-4035 (Google Search) https://www.debian.org/security/2017/dsa-4035 Debian Security Information: DSA-4061 (Google Search) https://www.debian.org/security/2017/dsa-4061 Debian Security Information: DSA-4075 (Google Search) https://www.debian.org/security/2017/dsa-4075 https://lists.debian.org/debian-lts-announce/2017/11/msg00018.html https://lists.debian.org/debian-lts-announce/2017/12/msg00001.html RedHat Security Advisories: RHSA-2017:3247 https://access.redhat.com/errata/RHSA-2017:3247 RedHat Security Advisories: RHSA-2017:3372 https://access.redhat.com/errata/RHSA-2017:3372 http://www.securitytracker.com/id/1039803 https://usn.ubuntu.com/3688-1/ Common Vulnerability Exposure (CVE) ID: CVE-2017-7828 Common Vulnerability Exposure (CVE) ID: CVE-2017-7830
Copyright	Copyright (C) 2017 Greenbone AG