openSUSE Security Update : MozillaThunderbird (openSUSE-SU-2014:0976-1)
Critical Nessus Plugin ID 77131
SynopsisThe remote openSUSE host is missing a security update.
DescriptionMozillaThunderbird was updated to Thunderbird 24.7.0 (bnc#887746)
- MFSA 2014-56/CVE-2014-1547/CVE-2014-1548 Miscellaneous memory safety hazards
- MFSA 2014-61/CVE-2014-1555 (bmo#1023121) Use-after-free with FireOnStateChange event
- MFSA 2014-63/CVE-2014-1544 (bmo#963150) Use-after-free while when manipulating certificates in the trusted cache (solved with NSS 3.16.2 requirement)
- MFSA 2014-64/CVE-2014-1557 (bmo#913805) Crash in Skia library when scaling high quality images
A standalone enigmail 1.7 package that was previously built as part of MozillaThunderbird was added.
SolutionUpdate the affected MozillaThunderbird packages.