Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2006-1045 (GCVE-0-2006-1045)
Vulnerability from cvelistv5 – Published: 2006-03-07 11:00 – Updated: 2024-08-07 16:56
VLAI?
EPSS
Summary
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T16:56:15.532Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html"
},
{
"name": "RHSA-2006:0330",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2006-0330.html"
},
{
"name": "19902",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19902"
},
{
"name": "USN-276-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/276-1/"
},
{
"name": "19941",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19941"
},
{
"name": "oval:org.mitre.oval:def:1975",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975"
},
{
"name": "19821",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19821"
},
{
"name": "oval:org.mitre.oval:def:10254",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL",
"x_transferred"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254"
},
{
"name": "19823",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19823"
},
{
"name": "DSA-1051",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2006/dsa-1051"
},
{
"name": "ADV-2006-3749",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2006/3749"
},
{
"name": "GLSA-200604-18",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml"
},
{
"name": "ADV-2006-1356",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2006/1356"
},
{
"name": "SSRT061236",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"name": "thunderbird-inline-information-disclosure(24959)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24959"
},
{
"name": "514",
"tags": [
"third-party-advisory",
"x_refsource_SREASON",
"x_transferred"
],
"url": "http://securityreason.com/securityalert/514"
},
{
"name": "MDKSA-2006:078",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:078"
},
{
"name": "20051",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/20051"
},
{
"name": "19863",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19863"
},
{
"name": "16881",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/16881"
},
{
"name": "HPSBUX02156",
"tags": [
"vendor-advisory",
"x_refsource_HP",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"name": "17516",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/17516"
},
{
"name": "SUSE-SA:2006:022",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://www.novell.com/linux/security/advisories/2006_04_25.html"
},
{
"name": "20060228 Mozilla Thunderbird : Multiple Information Disclosure Vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/426347"
},
{
"name": "GLSA-200605-09",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml"
},
{
"name": "22065",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/22065"
},
{
"name": "19950",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/19950"
},
{
"name": "DSA-1046",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2006/dsa-1046"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2006-02-28T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-18T14:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html"
},
{
"name": "RHSA-2006:0330",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2006-0330.html"
},
{
"name": "19902",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19902"
},
{
"name": "USN-276-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/276-1/"
},
{
"name": "19941",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19941"
},
{
"name": "oval:org.mitre.oval:def:1975",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975"
},
{
"name": "19821",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19821"
},
{
"name": "oval:org.mitre.oval:def:10254",
"tags": [
"vdb-entry",
"signature",
"x_refsource_OVAL"
],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254"
},
{
"name": "19823",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19823"
},
{
"name": "DSA-1051",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2006/dsa-1051"
},
{
"name": "ADV-2006-3749",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2006/3749"
},
{
"name": "GLSA-200604-18",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml"
},
{
"name": "ADV-2006-1356",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2006/1356"
},
{
"name": "SSRT061236",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"name": "thunderbird-inline-information-disclosure(24959)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24959"
},
{
"name": "514",
"tags": [
"third-party-advisory",
"x_refsource_SREASON"
],
"url": "http://securityreason.com/securityalert/514"
},
{
"name": "MDKSA-2006:078",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:078"
},
{
"name": "20051",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/20051"
},
{
"name": "19863",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19863"
},
{
"name": "16881",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/16881"
},
{
"name": "HPSBUX02156",
"tags": [
"vendor-advisory",
"x_refsource_HP"
],
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"name": "17516",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/17516"
},
{
"name": "SUSE-SA:2006:022",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://www.novell.com/linux/security/advisories/2006_04_25.html"
},
{
"name": "20060228 Mozilla Thunderbird : Multiple Information Disclosure Vulnerabilities",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/426347"
},
{
"name": "GLSA-200605-09",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml"
},
{
"name": "22065",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/22065"
},
{
"name": "19950",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/19950"
},
{
"name": "DSA-1046",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2006/dsa-1046"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-1045",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html",
"refsource": "CONFIRM",
"url": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html"
},
{
"name": "RHSA-2006:0330",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2006-0330.html"
},
{
"name": "19902",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19902"
},
{
"name": "USN-276-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/276-1/"
},
{
"name": "19941",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19941"
},
{
"name": "oval:org.mitre.oval:def:1975",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975"
},
{
"name": "19821",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19821"
},
{
"name": "oval:org.mitre.oval:def:10254",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254"
},
{
"name": "19823",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19823"
},
{
"name": "DSA-1051",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2006/dsa-1051"
},
{
"name": "ADV-2006-3749",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/3749"
},
{
"name": "GLSA-200604-18",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml"
},
{
"name": "ADV-2006-1356",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/1356"
},
{
"name": "SSRT061236",
"refsource": "HP",
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"name": "thunderbird-inline-information-disclosure(24959)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24959"
},
{
"name": "514",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/514"
},
{
"name": "MDKSA-2006:078",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:078"
},
{
"name": "20051",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20051"
},
{
"name": "19863",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19863"
},
{
"name": "16881",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/16881"
},
{
"name": "HPSBUX02156",
"refsource": "HP",
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"name": "17516",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/17516"
},
{
"name": "SUSE-SA:2006:022",
"refsource": "SUSE",
"url": "http://www.novell.com/linux/security/advisories/2006_04_25.html"
},
{
"name": "20060228 Mozilla Thunderbird : Multiple Information Disclosure Vulnerabilities",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/426347"
},
{
"name": "GLSA-200605-09",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml"
},
{
"name": "22065",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/22065"
},
{
"name": "19950",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19950"
},
{
"name": "DSA-1046",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2006/dsa-1046"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2006-1045",
"datePublished": "2006-03-07T11:00:00",
"dateReserved": "2006-03-07T00:00:00",
"dateUpdated": "2024-08-07T16:56:15.532Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4FB87608-0DF8-4729-95C5-CFA386AB3AC2\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"The HTML rendering engine in Mozilla Thunderbird 1.5, when \\\"Block loading of remote images in mail messages\\\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.\"}]",
"id": "CVE-2006-1045",
"lastModified": "2024-11-21T00:07:57.143",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:H/Au:N/C:P/I:N/A:N\", \"baseScore\": 2.6, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"HIGH\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 4.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2006-03-07T11:02:00.000",
"references": "[{\"url\": \"http://secunia.com/advisories/19821\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19823\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19863\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19902\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19941\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19950\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/20051\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/22065\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securityreason.com/securityalert/514\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.debian.org/security/2006/dsa-1046\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.debian.org/security/2006/dsa-1051\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDKSA-2006:078\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mozilla.org/security/announce/2006/mfsa2006-26.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.novell.com/linux/security/advisories/2006_04_25.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2006-0330.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/426347\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.securityfocus.com/archive/1/446657/100/200/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/446657/100/200/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/16881\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/17516\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1356\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/3749\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/24959\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://usn.ubuntu.com/276-1/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19821\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/19823\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/19863\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/19902\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/19941\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/19950\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/20051\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/22065\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securityreason.com/securityalert/514\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2006/dsa-1046\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2006/dsa-1051\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDKSA-2006:078\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mozilla.org/security/announce/2006/mfsa2006-26.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.novell.com/linux/security/advisories/2006_04_25.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2006-0330.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/426347\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.securityfocus.com/archive/1/446657/100/200/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/446657/100/200/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/16881\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/17516\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1356\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/3749\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/24959\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://usn.ubuntu.com/276-1/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2006-1045\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-03-07T11:02:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The HTML rendering engine in Mozilla Thunderbird 1.5, when \\\"Block loading of remote images in mail messages\\\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:H/Au:N/C:P/I:N/A:N\",\"baseScore\":2.6,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"HIGH\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":4.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FB87608-0DF8-4729-95C5-CFA386AB3AC2\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/19821\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19823\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19863\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19902\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19941\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19950\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/20051\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/22065\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securityreason.com/securityalert/514\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1046\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1051\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2006:078\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mozilla.org/security/announce/2006/mfsa2006-26.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2006_04_25.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2006-0330.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/426347\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.securityfocus.com/archive/1/446657/100/200/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/446657/100/200/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/16881\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/17516\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/1356\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/3749\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/24959\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://usn.ubuntu.com/276-1/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19821\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19823\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19863\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19902\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19941\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/19950\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/20051\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/22065\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securityreason.com/securityalert/514\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1046\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2006/dsa-1051\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDKSA-2006:078\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mozilla.org/security/announce/2006/mfsa2006-26.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.novell.com/linux/security/advisories/2006_04_25.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2006-0330.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/426347\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.securityfocus.com/archive/1/446657/100/200/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/446657/100/200/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/16881\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/17516\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/1356\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/3749\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/24959\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/276-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
GHSA-6M5G-MWM7-WQ36
Vulnerability from github – Published: 2022-05-01 06:45 – Updated: 2025-04-03 04:27
VLAI?
Details
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
{
"affected": [],
"aliases": [
"CVE-2006-1045"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2006-03-07T11:02:00Z",
"severity": "LOW"
},
"details": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.",
"id": "GHSA-6m5g-mwm7-wq36",
"modified": "2025-04-03T04:27:53Z",
"published": "2022-05-01T06:45:33Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1045"
},
{
"type": "WEB",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24959"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254"
},
{
"type": "WEB",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/276-1"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/19821"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/19823"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/19863"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/19902"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/19941"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/19950"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/20051"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/22065"
},
{
"type": "WEB",
"url": "http://securityreason.com/securityalert/514"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2006/dsa-1046"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2006/dsa-1051"
},
{
"type": "WEB",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml"
},
{
"type": "WEB",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:078"
},
{
"type": "WEB",
"url": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html"
},
{
"type": "WEB",
"url": "http://www.novell.com/linux/security/advisories/2006_04_25.html"
},
{
"type": "WEB",
"url": "http://www.redhat.com/support/errata/RHSA-2006-0330.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/archive/1/426347"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/16881"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/17516"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2006/1356"
},
{
"type": "WEB",
"url": "http://www.vupen.com/english/advisories/2006/3749"
}
],
"schema_version": "1.4.0",
"severity": []
}
RHSA-2006:0330
Vulnerability from csaf_redhat - Published: 2006-04-21 15:41 - Updated: 2025-11-21 17:30Summary
Red Hat Security Advisory: thunderbird security update
Notes
Topic
Updated thunderbird packages that fix various bugs are now available for
Red Hat Enterprise Linux 4.
This update has been rated as having critical security impact by the Red
Hat Security Response Team.
[Updated 24 Apr 2006]
The erratum text has been updated to include the details of additional
issues that were fixed by these erratum packages but which were not public
at the time of release. No changes have been made to the packages.
Details
Mozilla Thunderbird is a standalone mail and newsgroup client.
Several bugs were found in the way Thunderbird processes malformed
javascript. A malicious HTML mail message could modify the content of a
different open HTML mail message, possibly stealing sensitive information
or conducting a cross-site scripting attack. Please note that JavaScript
support is disabled by default in Thunderbird. (CVE-2006-1731,
CVE-2006-1732, CVE-2006-1741)
Several bugs were found in the way Thunderbird processes certain
javascript actions. A malicious HTML mail message could execute arbitrary
javascript instructions with the permissions of 'chrome', allowing the
page to steal sensitive information or install browser malware. Please
note that JavaScript support is disabled by default in Thunderbird.
(CVE-2006-0292, CVE-2006-0296, CVE-2006-1727, CVE-2006-1728, CVE-2006-1733,
CVE-2006-1734, CVE-2006-1735, CVE-2006-1742)
Several bugs were found in the way Thunderbird processes malformed HTML
mail messages. A carefully crafted malicious HTML mail message could
cause the execution of arbitrary code as the user running Thunderbird.
(CVE-2006-0748, CVE-2006-0749, CVE-2006-1724, CVE-2006-1730, CVE-2006-1737,
CVE-2006-1738, CVE-2006-1739, CVE-2006-1790)
A bug was found in the way Thunderbird processes certain inline content
in HTML mail messages. It may be possible for a remote attacker to send a
carefully crafted mail message to the victim, which will fetch remote
content, even if Thunderbird is configured not to fetch remote content.
(CVE-2006-1045)
A bug was found in the way Thunderbird executes in-line mail forwarding. If
a user can be tricked into forwarding a maliciously crafted mail message as
in-line content, it is possible for the message to execute javascript with
the permissions of "chrome". (CVE-2006-0884)
Users of Thunderbird are advised to upgrade to these updated packages
containing Thunderbird version 1.0.8, which is not vulnerable to these
issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated thunderbird packages that fix various bugs are now available for\nRed Hat Enterprise Linux 4.\n\nThis update has been rated as having critical security impact by the Red\nHat Security Response Team.\n\n[Updated 24 Apr 2006]\nThe erratum text has been updated to include the details of additional\nissues that were fixed by these erratum packages but which were not public\nat the time of release. No changes have been made to the packages.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nSeveral bugs were found in the way Thunderbird processes malformed\njavascript. A malicious HTML mail message could modify the content of a\ndifferent open HTML mail message, possibly stealing sensitive information\nor conducting a cross-site scripting attack. Please note that JavaScript\nsupport is disabled by default in Thunderbird. (CVE-2006-1731,\nCVE-2006-1732, CVE-2006-1741)\n\nSeveral bugs were found in the way Thunderbird processes certain \njavascript actions. A malicious HTML mail message could execute arbitrary \njavascript instructions with the permissions of \u0027chrome\u0027, allowing the \npage to steal sensitive information or install browser malware. Please \nnote that JavaScript support is disabled by default in Thunderbird. \n(CVE-2006-0292, CVE-2006-0296, CVE-2006-1727, CVE-2006-1728, CVE-2006-1733,\nCVE-2006-1734, CVE-2006-1735, CVE-2006-1742)\n\nSeveral bugs were found in the way Thunderbird processes malformed HTML\nmail messages. A carefully crafted malicious HTML mail message could \ncause the execution of arbitrary code as the user running Thunderbird.\n(CVE-2006-0748, CVE-2006-0749, CVE-2006-1724, CVE-2006-1730, CVE-2006-1737,\nCVE-2006-1738, CVE-2006-1739, CVE-2006-1790)\n\nA bug was found in the way Thunderbird processes certain inline content \nin HTML mail messages. It may be possible for a remote attacker to send a\ncarefully crafted mail message to the victim, which will fetch remote\ncontent, even if Thunderbird is configured not to fetch remote content.\n(CVE-2006-1045)\n\nA bug was found in the way Thunderbird executes in-line mail forwarding. If\na user can be tricked into forwarding a maliciously crafted mail message as\nin-line content, it is possible for the message to execute javascript with\nthe permissions of \"chrome\". (CVE-2006-0884)\n\nUsers of Thunderbird are advised to upgrade to these updated packages\ncontaining Thunderbird version 1.0.8, which is not vulnerable to these \nissues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2006:0330",
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.mozilla.org/projects/security/known-",
"url": "http://www.mozilla.org/projects/security/known-"
},
{
"category": "external",
"summary": "188848",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188848"
},
{
"category": "external",
"summary": "188850",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188850"
},
{
"category": "external",
"summary": "188852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188852"
},
{
"category": "external",
"summary": "188855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188855"
},
{
"category": "external",
"summary": "188857",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188857"
},
{
"category": "external",
"summary": "188859",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188859"
},
{
"category": "external",
"summary": "188861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188861"
},
{
"category": "external",
"summary": "188863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188863"
},
{
"category": "external",
"summary": "188865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188865"
},
{
"category": "external",
"summary": "188867",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188867"
},
{
"category": "external",
"summary": "188869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188869"
},
{
"category": "external",
"summary": "188871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188871"
},
{
"category": "external",
"summary": "188873",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188873"
},
{
"category": "external",
"summary": "188875",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188875"
},
{
"category": "external",
"summary": "188877",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188877"
},
{
"category": "external",
"summary": "188879",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188879"
},
{
"category": "external",
"summary": "189180",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=189180"
},
{
"category": "external",
"summary": "189181",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=189181"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2006/rhsa-2006_0330.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2025-11-21T17:30:10+00:00",
"generator": {
"date": "2025-11-21T17:30:10+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2006:0330",
"initial_release_date": "2006-04-21T15:41:00+00:00",
"revision_history": [
{
"date": "2006-04-21T15:41:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2006-04-21T00:00:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T17:30:10+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 4",
"product": {
"name": "Red Hat Enterprise Linux AS version 4",
"product_id": "4AS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop version 4",
"product": {
"name": "Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 4",
"product": {
"name": "Red Hat Enterprise Linux ES version 4",
"product_id": "4ES",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 4",
"product": {
"name": "Red Hat Enterprise Linux WS version 4",
"product_id": "4WS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.ia64",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64",
"product_id": "thunderbird-0:1.0.8-1.4.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.x86_64",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64",
"product_id": "thunderbird-0:1.0.8-1.4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.i386",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.i386",
"product_id": "thunderbird-0:1.0.8-1.4.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.src",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.src",
"product_id": "thunderbird-0:1.0.8-1.4.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.ppc",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc",
"product_id": "thunderbird-0:1.0.8-1.4.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.s390x",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x",
"product_id": "thunderbird-0:1.0.8-1.4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.s390",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.s390",
"product_id": "thunderbird-0:1.0.8-1.4.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.src as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.src"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.src",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.src as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.src"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.src",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.src as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.src"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.src",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.src as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.src"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.src",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4WS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2006-0292",
"discovery_date": "2006-01-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617879"
}
],
"notes": [
{
"category": "description",
"text": "The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before 1.5.1 does not properly dereference objects, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via unknown attack vectors related to garbage collection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0292"
},
{
"category": "external",
"summary": "RHBZ#1617879",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617879"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0292",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0292"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0292",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0292"
}
],
"release_date": "2006-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-0296",
"discovery_date": "2006-01-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617880"
}
],
"notes": [
{
"category": "description",
"text": "The XULDocument.persist function in Mozilla, Firefox before 1.5.0.1, and SeaMonkey before 1.0 does not validate the attribute name, which allows remote attackers to execute arbitrary Javascript by injecting RDF data into the user\u0027s localstore.rdf file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0296"
},
{
"category": "external",
"summary": "RHBZ#1617880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617880"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0296",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0296"
}
],
"release_date": "2006-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-0748",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618020"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via \"an invalid and non-sensical ordering of table-related tags\" that results in a negative array index.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0748"
},
{
"category": "external",
"summary": "RHBZ#1618020",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618020"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0748",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0748"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0748",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0748"
}
],
"release_date": "2006-04-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-0749",
"discovery_date": "2005-12-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "183537"
}
],
"notes": [
{
"category": "description",
"text": "nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors involving a \"particular sequence of HTML tags\" that leads to memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Firefox Tag Order Vulnerability",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0749"
},
{
"category": "external",
"summary": "RHBZ#183537",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=183537"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0749",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0749"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Firefox Tag Order Vulnerability"
},
{
"cve": "CVE-2006-0884",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618021"
}
],
"notes": [
{
"category": "description",
"text": "The WYSIWYG rendering engine (\"rich mail\" editor) in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail containing a javascript URI in the SRC attribute of an IFRAME tag, which is executed when the user edits the e-mail.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0884"
},
{
"category": "external",
"summary": "RHBZ#1618021",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618021"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0884",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0884"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0884",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0884"
}
],
"release_date": "2006-04-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1045",
"discovery_date": "2006-03-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618023"
}
],
"notes": [
{
"category": "description",
"text": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1045"
},
{
"category": "external",
"summary": "RHBZ#1618023",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618023"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1045",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1045"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1045",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1045"
}
],
"release_date": "2006-02-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1724",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618047"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to DHTML.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1724"
},
{
"category": "external",
"summary": "RHBZ#1618047",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618047"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1724",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1724"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1724",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1724"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1727",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618048"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to gain chrome privileges via multiple attack vectors related to the use of XBL scripts with \"Print Preview\".",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1727"
},
{
"category": "external",
"summary": "RHBZ#1618048",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618048"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1727",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1727"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1727",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1727"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1728",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618049"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via unknown vectors related to the crypto.generateCRMFRequest method.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1728"
},
{
"category": "external",
"summary": "RHBZ#1618049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618049"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1728",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1728"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1730",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618051"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via a large number in the CSS letter-spacing property that leads to a heap-based buffer overflow.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1730"
},
{
"category": "external",
"summary": "RHBZ#1618051",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618051"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1730",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1730"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1730",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1730"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1731",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618052"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 returns the Object class prototype instead of the global window object when (1) .valueOf.call or (2) .valueOf.apply are called without any arguments, which allows remote attackers to conduct cross-site scripting (XSS) attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1731"
},
{
"category": "external",
"summary": "RHBZ#1618052",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618052"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1731",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1731"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1732",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618053"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin protections and conduct cross-site scripting (XSS) attacks via unspecified vectors involving the window.controllers array.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1732"
},
{
"category": "external",
"summary": "RHBZ#1618053",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618053"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1732",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1732"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1733",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618054"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 does not properly protect the compilation scope of privileged built-in XBL bindings, which allows remote attackers to execute arbitrary code via the (1) valueOf.call or (2) valueOf.apply methods of an XBL binding, or (3) \"by inserting an XBL method into the DOM\u0027s document.body prototype chain.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1733"
},
{
"category": "external",
"summary": "RHBZ#1618054",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618054"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1733",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1733"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1733",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1733"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1734",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618055"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using the Object.watch method to access the \"clone parent\" internal function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1734"
},
{
"category": "external",
"summary": "RHBZ#1618055",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618055"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1734",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1734"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1734",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1734"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1735",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618056"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using an eval in an XBL method binding (XBL.method.eval) to create Javascript functions that are compiled with extra privileges.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1735"
},
{
"category": "external",
"summary": "RHBZ#1618056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618056"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1735",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1735"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1735",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1735"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1737",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618057"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary bytecode via JavaScript with a large regular expression.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1737"
},
{
"category": "external",
"summary": "RHBZ#1618057",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618057"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1737"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1738",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618058"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) by changing the (1) -moz-grid and (2) -moz-grid-group display styles.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1738"
},
{
"category": "external",
"summary": "RHBZ#1618058",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618058"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1738",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1738"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1739",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618059"
}
],
"notes": [
{
"category": "description",
"text": "The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain Cascading Style Sheets (CSS) that causes an out-of-bounds array write and buffer overflow.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1739"
},
{
"category": "external",
"summary": "RHBZ#1618059",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618059"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1739",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1739"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1739",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1739"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1741",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618061"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to inject arbitrary Javascript into other sites by (1) \"using a modal alert to suspend an event handler while a new page is being loaded\", (2) using eval(), and using certain variants involving (3) \"new Script;\" and (4) using window.__proto__ to extend eval, aka \"cross-site JavaScript injection\".",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1741"
},
{
"category": "external",
"summary": "RHBZ#1618061",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618061"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1741",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1741"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1741",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1741"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1742",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618062"
}
],
"notes": [
{
"category": "description",
"text": "The JavaScript engine in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 does not properly handle temporary variables that are not garbage collected, which might allow remote attackers to trigger operations on freed memory and cause memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1742"
},
{
"category": "external",
"summary": "RHBZ#1618062",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618062"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1742",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1742"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1742",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1742"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1790",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618063"
}
],
"notes": [
{
"category": "description",
"text": "A regression fix in Mozilla Firefox 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the InstallTrigger.install method, which leads to memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1790"
},
{
"category": "external",
"summary": "RHBZ#1618063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618063"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1790",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1790"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
}
]
}
RHSA-2006_0330
Vulnerability from csaf_redhat - Published: 2006-04-21 15:41 - Updated: 2024-11-22 00:14Summary
Red Hat Security Advisory: thunderbird security update
Notes
Topic
Updated thunderbird packages that fix various bugs are now available for
Red Hat Enterprise Linux 4.
This update has been rated as having critical security impact by the Red
Hat Security Response Team.
[Updated 24 Apr 2006]
The erratum text has been updated to include the details of additional
issues that were fixed by these erratum packages but which were not public
at the time of release. No changes have been made to the packages.
Details
Mozilla Thunderbird is a standalone mail and newsgroup client.
Several bugs were found in the way Thunderbird processes malformed
javascript. A malicious HTML mail message could modify the content of a
different open HTML mail message, possibly stealing sensitive information
or conducting a cross-site scripting attack. Please note that JavaScript
support is disabled by default in Thunderbird. (CVE-2006-1731,
CVE-2006-1732, CVE-2006-1741)
Several bugs were found in the way Thunderbird processes certain
javascript actions. A malicious HTML mail message could execute arbitrary
javascript instructions with the permissions of 'chrome', allowing the
page to steal sensitive information or install browser malware. Please
note that JavaScript support is disabled by default in Thunderbird.
(CVE-2006-0292, CVE-2006-0296, CVE-2006-1727, CVE-2006-1728, CVE-2006-1733,
CVE-2006-1734, CVE-2006-1735, CVE-2006-1742)
Several bugs were found in the way Thunderbird processes malformed HTML
mail messages. A carefully crafted malicious HTML mail message could
cause the execution of arbitrary code as the user running Thunderbird.
(CVE-2006-0748, CVE-2006-0749, CVE-2006-1724, CVE-2006-1730, CVE-2006-1737,
CVE-2006-1738, CVE-2006-1739, CVE-2006-1790)
A bug was found in the way Thunderbird processes certain inline content
in HTML mail messages. It may be possible for a remote attacker to send a
carefully crafted mail message to the victim, which will fetch remote
content, even if Thunderbird is configured not to fetch remote content.
(CVE-2006-1045)
A bug was found in the way Thunderbird executes in-line mail forwarding. If
a user can be tricked into forwarding a maliciously crafted mail message as
in-line content, it is possible for the message to execute javascript with
the permissions of "chrome". (CVE-2006-0884)
Users of Thunderbird are advised to upgrade to these updated packages
containing Thunderbird version 1.0.8, which is not vulnerable to these
issues.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated thunderbird packages that fix various bugs are now available for\nRed Hat Enterprise Linux 4.\n\nThis update has been rated as having critical security impact by the Red\nHat Security Response Team.\n\n[Updated 24 Apr 2006]\nThe erratum text has been updated to include the details of additional\nissues that were fixed by these erratum packages but which were not public\nat the time of release. No changes have been made to the packages.",
"title": "Topic"
},
{
"category": "general",
"text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nSeveral bugs were found in the way Thunderbird processes malformed\njavascript. A malicious HTML mail message could modify the content of a\ndifferent open HTML mail message, possibly stealing sensitive information\nor conducting a cross-site scripting attack. Please note that JavaScript\nsupport is disabled by default in Thunderbird. (CVE-2006-1731,\nCVE-2006-1732, CVE-2006-1741)\n\nSeveral bugs were found in the way Thunderbird processes certain \njavascript actions. A malicious HTML mail message could execute arbitrary \njavascript instructions with the permissions of \u0027chrome\u0027, allowing the \npage to steal sensitive information or install browser malware. Please \nnote that JavaScript support is disabled by default in Thunderbird. \n(CVE-2006-0292, CVE-2006-0296, CVE-2006-1727, CVE-2006-1728, CVE-2006-1733,\nCVE-2006-1734, CVE-2006-1735, CVE-2006-1742)\n\nSeveral bugs were found in the way Thunderbird processes malformed HTML\nmail messages. A carefully crafted malicious HTML mail message could \ncause the execution of arbitrary code as the user running Thunderbird.\n(CVE-2006-0748, CVE-2006-0749, CVE-2006-1724, CVE-2006-1730, CVE-2006-1737,\nCVE-2006-1738, CVE-2006-1739, CVE-2006-1790)\n\nA bug was found in the way Thunderbird processes certain inline content \nin HTML mail messages. It may be possible for a remote attacker to send a\ncarefully crafted mail message to the victim, which will fetch remote\ncontent, even if Thunderbird is configured not to fetch remote content.\n(CVE-2006-1045)\n\nA bug was found in the way Thunderbird executes in-line mail forwarding. If\na user can be tricked into forwarding a maliciously crafted mail message as\nin-line content, it is possible for the message to execute javascript with\nthe permissions of \"chrome\". (CVE-2006-0884)\n\nUsers of Thunderbird are advised to upgrade to these updated packages\ncontaining Thunderbird version 1.0.8, which is not vulnerable to these \nissues.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2006:0330",
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "http://www.mozilla.org/projects/security/known-",
"url": "http://www.mozilla.org/projects/security/known-"
},
{
"category": "external",
"summary": "188848",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188848"
},
{
"category": "external",
"summary": "188850",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188850"
},
{
"category": "external",
"summary": "188852",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188852"
},
{
"category": "external",
"summary": "188855",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188855"
},
{
"category": "external",
"summary": "188857",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188857"
},
{
"category": "external",
"summary": "188859",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188859"
},
{
"category": "external",
"summary": "188861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188861"
},
{
"category": "external",
"summary": "188863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188863"
},
{
"category": "external",
"summary": "188865",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188865"
},
{
"category": "external",
"summary": "188867",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188867"
},
{
"category": "external",
"summary": "188869",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188869"
},
{
"category": "external",
"summary": "188871",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188871"
},
{
"category": "external",
"summary": "188873",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188873"
},
{
"category": "external",
"summary": "188875",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188875"
},
{
"category": "external",
"summary": "188877",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188877"
},
{
"category": "external",
"summary": "188879",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=188879"
},
{
"category": "external",
"summary": "189180",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=189180"
},
{
"category": "external",
"summary": "189181",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=189181"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2006/rhsa-2006_0330.json"
}
],
"title": "Red Hat Security Advisory: thunderbird security update",
"tracking": {
"current_release_date": "2024-11-22T00:14:29+00:00",
"generator": {
"date": "2024-11-22T00:14:29+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2006:0330",
"initial_release_date": "2006-04-21T15:41:00+00:00",
"revision_history": [
{
"date": "2006-04-21T15:41:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2006-04-21T00:00:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T00:14:29+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AS version 4",
"product": {
"name": "Red Hat Enterprise Linux AS version 4",
"product_id": "4AS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::as"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop version 4",
"product": {
"name": "Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::desktop"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux ES version 4",
"product": {
"name": "Red Hat Enterprise Linux ES version 4",
"product_id": "4ES",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::es"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux WS version 4",
"product": {
"name": "Red Hat Enterprise Linux WS version 4",
"product_id": "4WS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:4::ws"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=ia64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.ia64",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64",
"product_id": "thunderbird-0:1.0.8-1.4.1.ia64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=ia64"
}
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.x86_64",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64",
"product_id": "thunderbird-0:1.0.8-1.4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=i386"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.i386",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.i386",
"product_id": "thunderbird-0:1.0.8-1.4.1.i386",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=i386"
}
}
}
],
"category": "architecture",
"name": "i386"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.src",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.src",
"product_id": "thunderbird-0:1.0.8-1.4.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.ppc",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc",
"product_id": "thunderbird-0:1.0.8-1.4.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.s390x",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x",
"product_id": "thunderbird-0:1.0.8-1.4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"product": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"product_id": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird-debuginfo@1.0.8-1.4.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "thunderbird-0:1.0.8-1.4.1.s390",
"product": {
"name": "thunderbird-0:1.0.8-1.4.1.s390",
"product_id": "thunderbird-0:1.0.8-1.4.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/thunderbird@1.0.8-1.4.1?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.src as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.src"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.src",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux AS version 4",
"product_id": "4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4AS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.src as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.src"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.src",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4",
"product_id": "4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4Desktop"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.src as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.src"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.src",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux ES version 4",
"product_id": "4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4ES"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.src as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.src"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.src",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"relates_to_product_reference": "4WS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64 as a component of Red Hat Enterprise Linux WS version 4",
"product_id": "4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
},
"product_reference": "thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"relates_to_product_reference": "4WS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2006-0292",
"discovery_date": "2006-01-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617879"
}
],
"notes": [
{
"category": "description",
"text": "The Javascript interpreter (jsinterp.c) in Mozilla and Firefox before 1.5.1 does not properly dereference objects, which allows remote attackers to cause a denial of service (crash) or execute arbitrary code via unknown attack vectors related to garbage collection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0292"
},
{
"category": "external",
"summary": "RHBZ#1617879",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617879"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0292",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0292"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0292",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0292"
}
],
"release_date": "2006-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-0296",
"discovery_date": "2006-01-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1617880"
}
],
"notes": [
{
"category": "description",
"text": "The XULDocument.persist function in Mozilla, Firefox before 1.5.0.1, and SeaMonkey before 1.0 does not validate the attribute name, which allows remote attackers to execute arbitrary Javascript by injecting RDF data into the user\u0027s localstore.rdf file.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0296"
},
{
"category": "external",
"summary": "RHBZ#1617880",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617880"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0296",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0296"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0296",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0296"
}
],
"release_date": "2006-02-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-0748",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618020"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via \"an invalid and non-sensical ordering of table-related tags\" that results in a negative array index.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0748"
},
{
"category": "external",
"summary": "RHBZ#1618020",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618020"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0748",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0748"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0748",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0748"
}
],
"release_date": "2006-04-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-0749",
"discovery_date": "2005-12-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "183537"
}
],
"notes": [
{
"category": "description",
"text": "nsHTMLContentSink.cpp in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors involving a \"particular sequence of HTML tags\" that leads to memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Firefox Tag Order Vulnerability",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0749"
},
{
"category": "external",
"summary": "RHBZ#183537",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=183537"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0749",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0749"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0749",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0749"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "Firefox Tag Order Vulnerability"
},
{
"cve": "CVE-2006-0884",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618021"
}
],
"notes": [
{
"category": "description",
"text": "The WYSIWYG rendering engine (\"rich mail\" editor) in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail containing a javascript URI in the SRC attribute of an IFRAME tag, which is executed when the user edits the e-mail.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-0884"
},
{
"category": "external",
"summary": "RHBZ#1618021",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618021"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-0884",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-0884"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-0884",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-0884"
}
],
"release_date": "2006-04-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1045",
"discovery_date": "2006-03-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618023"
}
],
"notes": [
{
"category": "description",
"text": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1045"
},
{
"category": "external",
"summary": "RHBZ#1618023",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618023"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1045",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1045"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1045",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1045"
}
],
"release_date": "2006-02-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1724",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618047"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Firefox and Thunderbird before 1.5.0.2, 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to DHTML.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1724"
},
{
"category": "external",
"summary": "RHBZ#1618047",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618047"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1724",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1724"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1724",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1724"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1727",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618048"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to gain chrome privileges via multiple attack vectors related to the use of XBL scripts with \"Print Preview\".",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1727"
},
{
"category": "external",
"summary": "RHBZ#1618048",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618048"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1727",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1727"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1727",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1727"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1728",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618049"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via unknown vectors related to the crypto.generateCRMFRequest method.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1728"
},
{
"category": "external",
"summary": "RHBZ#1618049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618049"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1728",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1728"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1730",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618051"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5.0.2 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0.1 allows remote attackers to execute arbitrary code via a large number in the CSS letter-spacing property that leads to a heap-based buffer overflow.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1730"
},
{
"category": "external",
"summary": "RHBZ#1618051",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618051"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1730",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1730"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1730",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1730"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1731",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618052"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 returns the Object class prototype instead of the global window object when (1) .valueOf.call or (2) .valueOf.apply are called without any arguments, which allows remote attackers to conduct cross-site scripting (XSS) attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1731"
},
{
"category": "external",
"summary": "RHBZ#1618052",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618052"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1731",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1731"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1731",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1731"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1732",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618053"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to bypass same-origin protections and conduct cross-site scripting (XSS) attacks via unspecified vectors involving the window.controllers array.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1732"
},
{
"category": "external",
"summary": "RHBZ#1618053",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618053"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1732",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1732"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1732",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1732"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1733",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618054"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 does not properly protect the compilation scope of privileged built-in XBL bindings, which allows remote attackers to execute arbitrary code via the (1) valueOf.call or (2) valueOf.apply methods of an XBL binding, or (3) \"by inserting an XBL method into the DOM\u0027s document.body prototype chain.\"",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1733"
},
{
"category": "external",
"summary": "RHBZ#1618054",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618054"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1733",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1733"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1733",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1733"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1734",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618055"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using the Object.watch method to access the \"clone parent\" internal function.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1734"
},
{
"category": "external",
"summary": "RHBZ#1618055",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618055"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1734",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1734"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1734",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1734"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1735",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618056"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to execute arbitrary code by using an eval in an XBL method binding (XBL.method.eval) to create Javascript functions that are compiled with extra privileges.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1735"
},
{
"category": "external",
"summary": "RHBZ#1618056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618056"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1735",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1735"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1735",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1735"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1737",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618057"
}
],
"notes": [
{
"category": "description",
"text": "Integer overflow in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary bytecode via JavaScript with a large regular expression.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1737"
},
{
"category": "external",
"summary": "RHBZ#1618057",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618057"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1737"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1737",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1737"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1738",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618058"
}
],
"notes": [
{
"category": "description",
"text": "Unspecified vulnerability in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) by changing the (1) -moz-grid and (2) -moz-grid-group display styles.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1738"
},
{
"category": "external",
"summary": "RHBZ#1618058",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618058"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1738",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1738"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1738",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1738"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1739",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618059"
}
],
"notes": [
{
"category": "description",
"text": "The CSS border-rendering code in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain Cascading Style Sheets (CSS) that causes an out-of-bounds array write and buffer overflow.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1739"
},
{
"category": "external",
"summary": "RHBZ#1618059",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618059"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1739",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1739"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1739",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1739"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1741",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618061"
}
],
"notes": [
{
"category": "description",
"text": "Mozilla Firefox 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 allows remote attackers to inject arbitrary Javascript into other sites by (1) \"using a modal alert to suspend an event handler while a new page is being loaded\", (2) using eval(), and using certain variants involving (3) \"new Script;\" and (4) using window.__proto__ to extend eval, aka \"cross-site JavaScript injection\".",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1741"
},
{
"category": "external",
"summary": "RHBZ#1618061",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618061"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1741",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1741"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1741",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1741"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1742",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618062"
}
],
"notes": [
{
"category": "description",
"text": "The JavaScript engine in Mozilla Firefox and Thunderbird 1.x before 1.5 and 1.0.x before 1.0.8, Mozilla Suite before 1.7.13, and SeaMonkey before 1.0 does not properly handle temporary variables that are not garbage collected, which might allow remote attackers to trigger operations on freed memory and cause memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1742"
},
{
"category": "external",
"summary": "RHBZ#1618062",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618062"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1742",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1742"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1742",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1742"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
},
{
"cve": "CVE-2006-1790",
"discovery_date": "2006-04-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1618063"
}
],
"notes": [
{
"category": "description",
"text": "A regression fix in Mozilla Firefox 1.0.7 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the InstallTrigger.install method, which leads to memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "security flaw",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2006-1790"
},
{
"category": "external",
"summary": "RHBZ#1618063",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1618063"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2006-1790",
"url": "https://www.cve.org/CVERecord?id=CVE-2006-1790"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2006-1790",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1790"
}
],
"release_date": "2006-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2006-04-21T15:41:00+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nThis update is available via Red Hat Network. To use Red Hat Network,\nlaunch the Red Hat Update Agent with the following command:\n\nup2date\n\nThis will start an interactive process that will result in the appropriate\nRPMs being upgraded on your system.",
"product_ids": [
"4AS:thunderbird-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-0:1.0.8-1.4.1.src",
"4AS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4AS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-0:1.0.8-1.4.1.src",
"4Desktop:thunderbird-0:1.0.8-1.4.1.x86_64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4Desktop:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-0:1.0.8-1.4.1.src",
"4ES:thunderbird-0:1.0.8-1.4.1.x86_64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4ES:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-0:1.0.8-1.4.1.src",
"4WS:thunderbird-0:1.0.8-1.4.1.x86_64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.i386",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ia64",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.ppc",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.s390x",
"4WS:thunderbird-debuginfo-0:1.0.8-1.4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2006:0330"
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "security flaw"
}
]
}
FKIE_CVE-2006-1045
Vulnerability from fkie_nvd - Published: 2006-03-07 11:02 - Updated: 2025-04-03 01:03
Severity ?
Summary
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://secunia.com/advisories/19821 | ||
| cve@mitre.org | http://secunia.com/advisories/19823 | ||
| cve@mitre.org | http://secunia.com/advisories/19863 | ||
| cve@mitre.org | http://secunia.com/advisories/19902 | ||
| cve@mitre.org | http://secunia.com/advisories/19941 | ||
| cve@mitre.org | http://secunia.com/advisories/19950 | ||
| cve@mitre.org | http://secunia.com/advisories/20051 | ||
| cve@mitre.org | http://secunia.com/advisories/22065 | ||
| cve@mitre.org | http://securityreason.com/securityalert/514 | ||
| cve@mitre.org | http://www.debian.org/security/2006/dsa-1046 | ||
| cve@mitre.org | http://www.debian.org/security/2006/dsa-1051 | ||
| cve@mitre.org | http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml | ||
| cve@mitre.org | http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml | ||
| cve@mitre.org | http://www.mandriva.com/security/advisories?name=MDKSA-2006:078 | ||
| cve@mitre.org | http://www.mozilla.org/security/announce/2006/mfsa2006-26.html | ||
| cve@mitre.org | http://www.novell.com/linux/security/advisories/2006_04_25.html | ||
| cve@mitre.org | http://www.redhat.com/support/errata/RHSA-2006-0330.html | ||
| cve@mitre.org | http://www.securityfocus.com/archive/1/426347 | Exploit | |
| cve@mitre.org | http://www.securityfocus.com/archive/1/446657/100/200/threaded | ||
| cve@mitre.org | http://www.securityfocus.com/bid/16881 | ||
| cve@mitre.org | http://www.securityfocus.com/bid/17516 | ||
| cve@mitre.org | http://www.vupen.com/english/advisories/2006/1356 | ||
| cve@mitre.org | http://www.vupen.com/english/advisories/2006/3749 | ||
| cve@mitre.org | https://exchange.xforce.ibmcloud.com/vulnerabilities/24959 | ||
| cve@mitre.org | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254 | ||
| cve@mitre.org | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975 | ||
| cve@mitre.org | https://usn.ubuntu.com/276-1/ | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/19821 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/19823 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/19863 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/19902 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/19941 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/19950 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/20051 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://secunia.com/advisories/22065 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://securityreason.com/securityalert/514 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2006/dsa-1046 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2006/dsa-1051 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mandriva.com/security/advisories?name=MDKSA-2006:078 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mozilla.org/security/announce/2006/mfsa2006-26.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.novell.com/linux/security/advisories/2006_04_25.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.redhat.com/support/errata/RHSA-2006-0330.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/archive/1/426347 | Exploit | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/archive/1/446657/100/200/threaded | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/16881 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/17516 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vupen.com/english/advisories/2006/1356 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.vupen.com/english/advisories/2006/3749 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://exchange.xforce.ibmcloud.com/vulnerabilities/24959 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://usn.ubuntu.com/276-1/ |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mozilla | thunderbird | 1.5 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:*",
"matchCriteriaId": "4FB87608-0DF8-4729-95C5-CFA386AB3AC2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed."
}
],
"id": "CVE-2006-1045",
"lastModified": "2025-04-03T01:03:51.193",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 4.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2006-03-07T11:02:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/19821"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/19823"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/19863"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/19902"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/19941"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/19950"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/20051"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/22065"
},
{
"source": "cve@mitre.org",
"url": "http://securityreason.com/securityalert/514"
},
{
"source": "cve@mitre.org",
"url": "http://www.debian.org/security/2006/dsa-1046"
},
{
"source": "cve@mitre.org",
"url": "http://www.debian.org/security/2006/dsa-1051"
},
{
"source": "cve@mitre.org",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml"
},
{
"source": "cve@mitre.org",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml"
},
{
"source": "cve@mitre.org",
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:078"
},
{
"source": "cve@mitre.org",
"url": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.novell.com/linux/security/advisories/2006_04_25.html"
},
{
"source": "cve@mitre.org",
"url": "http://www.redhat.com/support/errata/RHSA-2006-0330.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit"
],
"url": "http://www.securityfocus.com/archive/1/426347"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/16881"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/17516"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2006/1356"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2006/3749"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24959"
},
{
"source": "cve@mitre.org",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254"
},
{
"source": "cve@mitre.org",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975"
},
{
"source": "cve@mitre.org",
"url": "https://usn.ubuntu.com/276-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/19821"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/19823"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/19863"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/19902"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/19941"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/19950"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/20051"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/22065"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://securityreason.com/securityalert/514"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2006/dsa-1046"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2006/dsa-1051"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:078"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.novell.com/linux/security/advisories/2006_04_25.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.redhat.com/support/errata/RHSA-2006-0330.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit"
],
"url": "http://www.securityfocus.com/archive/1/426347"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/16881"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/17516"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2006/1356"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2006/3749"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24959"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://usn.ubuntu.com/276-1/"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GSD-2006-1045
Vulnerability from gsd - Updated: 2023-12-13 01:19Details
The HTML rendering engine in Mozilla Thunderbird 1.5, when "Block loading of remote images in mail messages" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2006-1045",
"description": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.",
"id": "GSD-2006-1045",
"references": [
"https://www.debian.org/security/2006/dsa-1051",
"https://www.debian.org/security/2006/dsa-1046",
"https://access.redhat.com/errata/RHSA-2006:0330"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2006-1045"
],
"details": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed.",
"id": "GSD-2006-1045",
"modified": "2023-12-13T01:19:55.304895Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-1045",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html",
"refsource": "CONFIRM",
"url": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html"
},
{
"name": "RHSA-2006:0330",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2006-0330.html"
},
{
"name": "19902",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19902"
},
{
"name": "USN-276-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/276-1/"
},
{
"name": "19941",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19941"
},
{
"name": "oval:org.mitre.oval:def:1975",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975"
},
{
"name": "19821",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19821"
},
{
"name": "oval:org.mitre.oval:def:10254",
"refsource": "OVAL",
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254"
},
{
"name": "19823",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19823"
},
{
"name": "DSA-1051",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2006/dsa-1051"
},
{
"name": "ADV-2006-3749",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/3749"
},
{
"name": "GLSA-200604-18",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml"
},
{
"name": "ADV-2006-1356",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2006/1356"
},
{
"name": "SSRT061236",
"refsource": "HP",
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"name": "thunderbird-inline-information-disclosure(24959)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24959"
},
{
"name": "514",
"refsource": "SREASON",
"url": "http://securityreason.com/securityalert/514"
},
{
"name": "MDKSA-2006:078",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:078"
},
{
"name": "20051",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/20051"
},
{
"name": "19863",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19863"
},
{
"name": "16881",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/16881"
},
{
"name": "HPSBUX02156",
"refsource": "HP",
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
},
{
"name": "17516",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/17516"
},
{
"name": "SUSE-SA:2006:022",
"refsource": "SUSE",
"url": "http://www.novell.com/linux/security/advisories/2006_04_25.html"
},
{
"name": "20060228 Mozilla Thunderbird : Multiple Information Disclosure Vulnerabilities",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/426347"
},
{
"name": "GLSA-200605-09",
"refsource": "GENTOO",
"url": "http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml"
},
{
"name": "22065",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/22065"
},
{
"name": "19950",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/19950"
},
{
"name": "DSA-1046",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2006/dsa-1046"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:mozilla:thunderbird:1.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2006-1045"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The HTML rendering engine in Mozilla Thunderbird 1.5, when \"Block loading of remote images in mail messages\" is enabled, does not properly block external images from inline HTML attachments, which could allow remote attackers to obtain sensitive information, such as application version or IP address, when the user reads the email and the external image is accessed."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20060228 Mozilla Thunderbird : Multiple Information Disclosure Vulnerabilities",
"refsource": "BUGTRAQ",
"tags": [
"Exploit"
],
"url": "http://www.securityfocus.com/archive/1/426347"
},
{
"name": "16881",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/16881"
},
{
"name": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html",
"refsource": "CONFIRM",
"tags": [],
"url": "http://www.mozilla.org/security/announce/2006/mfsa2006-26.html"
},
{
"name": "17516",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/17516"
},
{
"name": "19821",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/19821"
},
{
"name": "DSA-1046",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2006/dsa-1046"
},
{
"name": "GLSA-200604-18",
"refsource": "GENTOO",
"tags": [],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200604-18.xml"
},
{
"name": "19823",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/19823"
},
{
"name": "19863",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/19863"
},
{
"name": "19902",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/19902"
},
{
"name": "DSA-1051",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2006/dsa-1051"
},
{
"name": "19950",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/19950"
},
{
"name": "19941",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/19941"
},
{
"name": "GLSA-200605-09",
"refsource": "GENTOO",
"tags": [],
"url": "http://www.gentoo.org/security/en/glsa/glsa-200605-09.xml"
},
{
"name": "RHSA-2006:0330",
"refsource": "REDHAT",
"tags": [],
"url": "http://www.redhat.com/support/errata/RHSA-2006-0330.html"
},
{
"name": "20051",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/20051"
},
{
"name": "MDKSA-2006:078",
"refsource": "MANDRIVA",
"tags": [],
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:078"
},
{
"name": "22065",
"refsource": "SECUNIA",
"tags": [],
"url": "http://secunia.com/advisories/22065"
},
{
"name": "514",
"refsource": "SREASON",
"tags": [],
"url": "http://securityreason.com/securityalert/514"
},
{
"name": "ADV-2006-1356",
"refsource": "VUPEN",
"tags": [],
"url": "http://www.vupen.com/english/advisories/2006/1356"
},
{
"name": "ADV-2006-3749",
"refsource": "VUPEN",
"tags": [],
"url": "http://www.vupen.com/english/advisories/2006/3749"
},
{
"name": "SUSE-SA:2006:022",
"refsource": "SUSE",
"tags": [],
"url": "http://www.novell.com/linux/security/advisories/2006_04_25.html"
},
{
"name": "thunderbird-inline-information-disclosure(24959)",
"refsource": "XF",
"tags": [],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24959"
},
{
"name": "oval:org.mitre.oval:def:1975",
"refsource": "OVAL",
"tags": [],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1975"
},
{
"name": "oval:org.mitre.oval:def:10254",
"refsource": "OVAL",
"tags": [],
"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10254"
},
{
"name": "USN-276-1",
"refsource": "UBUNTU",
"tags": [],
"url": "https://usn.ubuntu.com/276-1/"
},
{
"name": "SSRT061236",
"refsource": "HP",
"tags": [],
"url": "http://www.securityfocus.com/archive/1/446657/100/200/threaded"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.6,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 4.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
}
},
"lastModifiedDate": "2018-10-18T16:30Z",
"publishedDate": "2006-03-07T11:02Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…