{"id":"MGASA-2022-0157","summary":"Updated thunderbird packages fix security vulnerabilities","details":"The updated thunderbird packages fix security vulnerabilities:\n\nUse-after-free in NSSToken objects (CVE-2022-1097).\n\nUse-after-free after VR Process destruction (CVE-2022-1196).\n\nOpenPGP revocation information was ignored (CVE-2022-1197).\n\nDenial of Service via complex regular expressions (CVE-2022-24713).\n\nxmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation\nof encoding, such as checks for whether a UTF-8 character is valid in a\ncertain context (CVE-2022-25235).\n\nxmlparse.c in Expat (aka libexpat) before 2.4.5 allows attackers to insert\nnamespace-separator characters into namespace URIs (CVE-2022-25236).\n\nIn Expat (aka libexpat) before 2.4.5, there is an integer overflow in\nstoreRawNames (CVE-2022-25315).\n\nOut of bounds write due to unexpected WebAuthN Extensions (CVE-2022-28281).\n\nUse-after-free in DocumentL10n::TranslateDocument (CVE-2022-28282).\n\nIncorrect AliasSet used in JIT Codegen (CVE-2022-28285).\n\niframe contents could be rendered outside the border (CVE-2022-28286).\n\nMemory safety bugs fixed in Thunderbird 91.8 (CVE-2022-28289).\n","modified":"2026-02-04T03:32:24.891715Z","published":"2022-04-28T22:46:19Z","related":["CVE-2022-1097","CVE-2022-1196","CVE-2022-1197","CVE-2022-24713","CVE-2022-25235","CVE-2022-25236","CVE-2022-25315","CVE-2022-28281","CVE-2022-28282","CVE-2022-28285","CVE-2022-28286","CVE-2022-28289"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2022-0157.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=30250"},{"type":"REPORT","url":"https://www.mozilla.org/en-US/security/advisories/mfsa2022-15/"},{"type":"REPORT","url":"https://www.thunderbird.net/en-US/thunderbird/91.8.0/releasenotes/"},{"type":"REPORT","url":"https://www.thunderbird.net/en-US/thunderbird/91.8.1/releasenotes/"}],"affected":[{"package":{"name":"thunderbird","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/thunderbird?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"91.8.1-1.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0157.json"}},{"package":{"name":"thunderbird-l10n","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/thunderbird-l10n?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"91.8.1-1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2022-0157.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}