ALAS2-2021-1644


Amazon Linux 2 Security Advisory: ALAS-2021-1644
Advisory Release Date: 2021-05-20 17:05 Pacific
Advisory Updated Date: 2021-05-24 18:06 Pacific
Severity: Important

Issue Overview:

Further techniques that built on the slipstream research combined with a malicious webpage could have exposed both an internal network's hosts as well as services running on the user's local machine. This vulnerability affects Firefox < 85 (CVE-2021-23991 ) (CVE-2021-23992 ) (CVE-2021-23961 ) (CVE-2021-23993 ) (CVE-2021-23994 ) (CVE-2021-23995 ) (CVE-2021-23998 ) (CVE-2021-23999 ) (CVE-2021-24002 ) (CVE-2021-29945 ) (CVE-2021-29946 ) (CVE-2021-29948 )


Affected Packages:

thunderbird


Issue Correction:
Run yum update thunderbird to update your system.

New Packages:
aarch64:
    thunderbird-78.10.0-1.amzn2.0.1.aarch64
    thunderbird-debuginfo-78.10.0-1.amzn2.0.1.aarch64

src:
    thunderbird-78.10.0-1.amzn2.0.1.src

x86_64:
    thunderbird-78.10.0-1.amzn2.0.1.x86_64
    thunderbird-debuginfo-78.10.0-1.amzn2.0.1.x86_64