Test ID:	1.3.6.1.4.1.25623.1.1.18.2.2024.2790.1
Category:	openSUSE Local Security Checks
Title:	openSUSE Security Advisory (SUSE-SU-2024:2790-1)
Summary:	The remote host is missing an update for the 'MozillaThunderbird' package(s) announced via the SUSE-SU-2024:2790-1 advisory.
Description:	Summary: The remote host is missing an update for the 'MozillaThunderbird' package(s) announced via the SUSE-SU-2024:2790-1 advisory. Vulnerability Insight: - CVE-2024-6600: Memory corruption in WebGL API (bmo#1888340) - CVE-2024-6601: Race condition in permission assignment (bmo#1890748) - CVE-2024-6602: Memory corruption in NSS (bmo#1895032) - CVE-2024-6603: Memory corruption in thread creation (bmo#1895081) - CVE-2024-6604: Memory safety bugs fixed in Firefox 128, Firefox ESR 115.13, Thunderbird 128, and Thunderbird 115.13 (bmo#1748105, bmo#1837550, bmo#1884266) Other fixes: - fixed: After starting Thunderbird, the message list position was sometimes set to an incorrect position (bmo#1896009) Affected Software/OS: 'MozillaThunderbird' package(s) on openSUSE Leap 15.5, openSUSE Leap 15.6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2024-6600 Common Vulnerability Exposure (CVE) ID: CVE-2024-6601 Common Vulnerability Exposure (CVE) ID: CVE-2024-6602 Common Vulnerability Exposure (CVE) ID: CVE-2024-6603 Common Vulnerability Exposure (CVE) ID: CVE-2024-6604
Copyright	Copyright (C) 2025 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.