ALAS2-2019-1157


Amazon Linux 2 Security Advisory: ALAS-2019-1157
Advisory Release Date: 2019-02-14 03:57 Pacific
Severity: Critical

Issue Overview:

Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3 (CVE-2018-12390 )

Crash with nested event loops (CVE-2018-12392 )

Memory safety bugs fixed in Firefox ESR 60.3 (CVE-2018-12389 )

Integer overflow during Unicode conversion while loading JavaScript (CVE-2018-12393 )


Affected Packages:

thunderbird


Issue Correction:
Run yum update thunderbird to update your system.

New Packages:
src:
    thunderbird-60.2.1-4.amzn2.0.1.src

x86_64:
    thunderbird-60.2.1-4.amzn2.0.1.x86_64
    thunderbird-debuginfo-60.2.1-4.amzn2.0.1.x86_64