Mozilla has released Thunderbird 91.6.2 on March 5: https://www.thunderbird.net/en-US/thunderbird/91.6.2/releasenotes/ It fixes bugs and a security issue: https://www.mozilla.org/en-US/security/advisories/mfsa2022-09/
Whiteboard: (none) => MGA8TOOSource RPM: (none) => thunderbird, thunderbird-l10nAssignee: bugsquad => nicolas.salgueroCC: (none) => nicolas.salguero
Advisory: ======================== Updated thunderbird packages fix security vulnerabilities: Removing an XSLT parameter during processing could have lead to an exploitable use-after-free (CVE-2022-26485). An unexpected message in the WebGPU IPC framework could lead to a use-after-free and exploitable sandbox escape (CVE-2022-26486). References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26485 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26486 https://www.mozilla.org/en-US/security/advisories/mfsa2022-09/ https://www.thunderbird.net/en-US/thunderbird/91.6.2/releasenotes/
Depends on: (none) => 30124
Updated packages in core/updates_testing: ======================== thunderbird-91.6.2-1.mga8 thunderbird-ru-91.6.2-1.mga8 thunderbird-uk-91.6.2-1.mga8 thunderbird-ka-91.6.2-1.mga8 thunderbird-el-91.6.2-1.mga8 thunderbird-th-91.6.2-1.mga8 thunderbird-ja-91.6.2-1.mga8 thunderbird-kk-91.6.2-1.mga8 thunderbird-zh_TW-91.6.2-1.mga8 thunderbird-zh_CN-91.6.2-1.mga8 thunderbird-hy_AM-91.6.2-1.mga8 thunderbird-sk-91.6.2-1.mga8 thunderbird-hu-91.6.2-1.mga8 thunderbird-dsb-91.6.2-1.mga8 thunderbird-vi-91.6.2-1.mga8 thunderbird-hsb-91.6.2-1.mga8 thunderbird-sr-91.6.2-1.mga8 thunderbird-cs-91.6.2-1.mga8 thunderbird-fr-91.6.2-1.mga8 thunderbird-ko-91.6.2-1.mga8 thunderbird-sq-91.6.2-1.mga8 thunderbird-lt-91.6.2-1.mga8 thunderbird-be-91.6.2-1.mga8 thunderbird-bg-91.6.2-1.mga8 thunderbird-es_AR-91.6.2-1.mga8 thunderbird-de-91.6.2-1.mga8 thunderbird-tr-91.6.2-1.mga8 thunderbird-pl-91.6.2-1.mga8 thunderbird-pt_BR-91.6.2-1.mga8 thunderbird-fy_NL-91.6.2-1.mga8 thunderbird-sv_SE-91.6.2-1.mga8 thunderbird-kab-91.6.2-1.mga8 thunderbird-nl-91.6.2-1.mga8 thunderbird-cy-91.6.2-1.mga8 thunderbird-gl-91.6.2-1.mga8 thunderbird-eu-91.6.2-1.mga8 thunderbird-he-91.6.2-1.mga8 thunderbird-pt_PT-91.6.2-1.mga8 thunderbird-fi-91.6.2-1.mga8 thunderbird-ar-91.6.2-1.mga8 thunderbird-sl-91.6.2-1.mga8 thunderbird-ro-91.6.2-1.mga8 thunderbird-da-91.6.2-1.mga8 thunderbird-nn_NO-91.6.2-1.mga8 thunderbird-nb_NO-91.6.2-1.mga8 thunderbird-pa_IN-91.6.2-1.mga8 thunderbird-hr-91.6.2-1.mga8 thunderbird-ca-91.6.2-1.mga8 thunderbird-id-91.6.2-1.mga8 thunderbird-en_GB-91.6.2-1.mga8 thunderbird-gd-91.6.2-1.mga8 thunderbird-en_CA-91.6.2-1.mga8 thunderbird-en_US-91.6.2-1.mga8 thunderbird-br-91.6.2-1.mga8 thunderbird-lv-91.6.2-1.mga8 thunderbird-it-91.6.2-1.mga8 thunderbird-ga_IE-91.6.2-1.mga8 thunderbird-et-91.6.2-1.mga8 thunderbird-uz-91.6.2-1.mga8 thunderbird-ast-91.6.2-1.mga8 thunderbird-is-91.6.2-1.mga8 thunderbird-ms-91.6.2-1.mga8 thunderbird-es_ES-91.6.2-1.mga8 thunderbird-af-91.6.2-1.mga8 from SRPMS: thunderbird-91.6.2-1.mga8.src.rpm thunderbird-l10n-91.6.2-1.mga8.src.rpm
Version: Cauldron => 8Whiteboard: MGA8TOO => (none)Assignee: nicolas.salguero => qa-bugsStatus: NEW => ASSIGNED
Hi, I have tested in Mga real installation. Works fine for me with three accounts, send and receive, settings, signatures, addons. Greetings!
CC: (none) => joselp
Validating. Advisory committed in SVN.
Whiteboard: (none) => MGA8-64-OKKeywords: (none) => advisory, validated_updateCC: (none) => sysadmin-bugs
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2022-0094.html
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED
Bugs today are too fast for me... mga8-64 OK Swedish, Plasma, IMAP, SMTP...
CC: (none) => fri
RedHat has issued an advisory for this today (March 14): https://access.redhat.com/errata/RHSA-2022:0845