Vulnerability from csaf_suse
Published
2022-11-18 15:39
Modified
2022-11-18 15:39
Summary
Security update for MozillaThunderbird
Notes
Title of the patch
Security update for MozillaThunderbird
Description of the patch
This update for MozillaThunderbird fixes the following issues:
- Fixed various security issues (MFSA 2022-49, bsc#1205270):
* CVE-2022-45403 (bmo#1762078)
Service Workers might have learned size of cross-origin media
files
* CVE-2022-45404 (bmo#1790815)
Fullscreen notification bypass
* CVE-2022-45405 (bmo#1791314)
Use-after-free in InputStream implementation
* CVE-2022-45406 (bmo#1791975)
Use-after-free of a JavaScript Realm
* CVE-2022-45408 (bmo#1793829)
Fullscreen notification bypass via windowName
* CVE-2022-45409 (bmo#1796901)
Use-after-free in Garbage Collection
* CVE-2022-45410 (bmo#1658869)
ServiceWorker-intercepted requests bypassed SameSite cookie
policy
* CVE-2022-45411 (bmo#1790311)
Cross-Site Tracing was possible via non-standard override
headers
* CVE-2022-45412 (bmo#1791029)
Symlinks may resolve to partially uninitialized buffers
* CVE-2022-45416 (bmo#1793676)
Keystroke Side-Channel Leakage
* CVE-2022-45418 (bmo#1795815)
Custom mouse cursor could have been drawn over browser UI
* CVE-2022-45420 (bmo#1792643)
Iframe contents could be rendered outside the iframe
* CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061)
Memory safety bugs fixed in Thunderbird 102.5
- Fixed various security issues: (MFSA 2022-46, bsc#1204421):
* CVE-2022-42927 (bmo#1789128)
Same-origin policy violation could have leaked cross-origin
URLs
* CVE-2022-42928 (bmo#1791520)
Memory Corruption in JS Engine
* CVE-2022-42929 (bmo#1789439)
Denial of Service via window.print
* CVE-2022-42932 (bmo#1789729, bmo#1791363, bmo#1792041)
Memory safety bugs fixed in Thunderbird 102.4
- Mozilla Thunderbird 102.5
* changed: `Ctrl+N` shortcut to create new contacts from
address book restored (bmo#1751288)
* fixed: Account Settings UI did not update to reflect default
identity changes (bmo#1782646)
* fixed: New POP mail notifications were incorrectly shown for
messages marked by filters as read or junk (bmo#1787531)
* fixed: Connecting to an IMAP server configured to use
`PREAUTH` caused Thunderbird to hang (bmo#1798161)
* fixed: Error responses received in greeting header from NNTP
servers did not display error message (bmo#1792281)
* fixed: News messages sent using 'Send Later' failed to send
after going back online (bmo#1794997)
* fixed: 'Download/Sync Now...' did not completely sync all
newsgroups before going offline (bmo#1795547)
* fixed: Username was missing from error dialog on failed login
to news server (bmo#1796964)
* fixed: Thunderbird can now fetch RSS channel feeds with
incomplete channel URL (bmo#1794775)
* fixed: Add-on 'Contribute' button in Add-ons Manager did not
work (bmo#1795751)
* fixed: Help text for `/part` Matrix command was incorrect
(bmo#1795578)
* fixed: Invite Attendees dialog did not fetch free/busy info
for attendees with encoded characters in their name
(bmo#1797927)
- Mozilla Thunderbird 102.4.2
* changed: 'Address Book' button in Account Central will now
create a CardDAV address book instead of a local address book
(bmo#1793903)
* fixed: Messages fetched from POP server in `Fetch headers
only` mode disappeared when moved to different folder by
filter action (bmo#1793374)
* fixed: Thunderbird re-downloaded locally deleted messages
from a POP server when 'Leave messages on server' and 'Until
I delete them' were enabled (bmo#1796903)
* fixed: Multiple password prompts for the same POP account
could be displayed (bmo#1786920)
* fixed: IMAP authentication failed on next startup if ImapMail
folder was deleted by user (bmo#1793599)
* fixed: Retrieving passwords for authenticated NNTP accounts
could fail due to obsolete preferences in a users profile on
every startup (bmo#1770594)
* fixed: `Get Next n Messages` did not consistently fetch all
messages requested from NNTP server (bmo#1794185)
* fixed: `Get Messages` button unable to fetch messages from
NNTP server if root folder not selected (bmo#1792362)
* fixed: Thunderbird text branding did not always match locale
of localized build (bmo#1786199)
* fixed: Thunderbird installer and Thunderbird updater created
Windows shortcuts with different names (bmo#1787264)
* fixed: LDAP search filters unable to work with non-ASCII
characters (bmo#1794306)
* fixed: 'Today' highlighting in Calendar Month view did not
update after date change at midnight (bmo#1795176)
- Mozilla Thunderbird 102.4.1
* new: Thunderbird will now catch and report errors parsing
vCards that contain incorrectly formatted dates (bmo#1793415)
* fixed: Dynamic language switching did not update interface
when switched to right-to-left languages (bmo#1794289)
* fixed: Custom header data was discarded after messages were
saved as draft and reopened (bmo#195716)
* fixed: `-remote` command line argument did not work,
affecting integration with various applications such as
LibreOffice (bmo#1793323)
* fixed: Messages received via some SMS-to-email services could
not display images (bmo#1774805)
* fixed: VCards with nickname field set could not be edited
(bmo#1793877)
* fixed: Some recurring events were missing from Agenda on
first load (bmo#1771168)
* fixed: Download requests for remote ICS calendars incorrectly
set 'Accept' header to text/xml (bmo#1793757)
* fixed: Monthly events created on the 31st of a month with <30
days placed first occurrence 1-2 days after the beginning of
the following month (bmo#1266797)
* fixed: Various visual and UX improvements
(bmo#1781437,bmo#1785314,bmo#1794139,bmo#1794155,bmo#1794399)
* changed: Thunderbird will automatically detect and repair
OpenPGP key storage corruption caused by using the profile
import tool in Thunderbird 102 (bmo#1790610)
* fixed: POP message download into a large folder (~13000
messages) caused Thunderbird to temporarily freeze
(bmo#1792675)
* fixed: Forwarding messages with special characters in Subject
failed on Windows (bmo#1782173)
* fixed: Links for FileLink attachments were not added when
attachment filename contained Unicode characters
(bmo#1789589)
* fixed: Address Book display pane continued to show contacts
after deletion (bmo#1777808)
* fixed: Printing address book did not include all contact
details (bmo#1782076)
* fixed: CardDAV contacts without a Name property did not save
to Google Contacts (bmo#1792101)
* fixed: 'Publish Calendar' did not work (bmo#1794471)
* fixed: Calendar database storage improvements (bmo#1792124)
* fixed: Incorrectly handled error responses from CalDAV
servers sometimes caused events to disappear from calendar
(bmo#1792923)
* fixed: Various visual and UX improvements (bmo#1776093,bmo#17
80040,bmo#1780425,bmo#1792876,bmo#1792872,bmo#1793466,bmo#179
3543)
Patchnames
SUSE-2022-4085,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-4085,SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4085,SUSE-SLE-Product-WE-15-SP3-2022-4085,SUSE-SLE-Product-WE-15-SP4-2022-4085,openSUSE-SLE-15.3-2022-4085,openSUSE-SLE-15.4-2022-4085
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for MozillaThunderbird", title: "Title of the patch", }, { category: "description", text: "This update for MozillaThunderbird fixes the following issues:\n\n- Fixed various security issues (MFSA 2022-49, bsc#1205270):\n * CVE-2022-45403 (bmo#1762078)\n Service Workers might have learned size of cross-origin media\n files\n * CVE-2022-45404 (bmo#1790815)\n Fullscreen notification bypass\n * CVE-2022-45405 (bmo#1791314)\n Use-after-free in InputStream implementation\n * CVE-2022-45406 (bmo#1791975)\n Use-after-free of a JavaScript Realm\n * CVE-2022-45408 (bmo#1793829)\n Fullscreen notification bypass via windowName\n * CVE-2022-45409 (bmo#1796901)\n Use-after-free in Garbage Collection\n * CVE-2022-45410 (bmo#1658869)\n ServiceWorker-intercepted requests bypassed SameSite cookie\n policy\n * CVE-2022-45411 (bmo#1790311)\n Cross-Site Tracing was possible via non-standard override\n headers\n * CVE-2022-45412 (bmo#1791029)\n Symlinks may resolve to partially uninitialized buffers\n * CVE-2022-45416 (bmo#1793676)\n Keystroke Side-Channel Leakage\n * CVE-2022-45418 (bmo#1795815)\n Custom mouse cursor could have been drawn over browser UI\n * CVE-2022-45420 (bmo#1792643)\n Iframe contents could be rendered outside the iframe\n * CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061)\n Memory safety bugs fixed in Thunderbird 102.5\n\n- Fixed various security issues: (MFSA 2022-46, bsc#1204421):\n * CVE-2022-42927 (bmo#1789128)\n Same-origin policy violation could have leaked cross-origin\n URLs\n * CVE-2022-42928 (bmo#1791520)\n Memory Corruption in JS Engine\n * CVE-2022-42929 (bmo#1789439)\n Denial of Service via window.print\n * CVE-2022-42932 (bmo#1789729, bmo#1791363, bmo#1792041)\n Memory safety bugs fixed in Thunderbird 102.4\n\n- Mozilla Thunderbird 102.5\n * changed: `Ctrl+N` shortcut to create new contacts from\n address book restored (bmo#1751288)\n * fixed: Account Settings UI did not update to reflect default\n identity changes (bmo#1782646)\n * fixed: New POP mail notifications were incorrectly shown for\n messages marked by filters as read or junk (bmo#1787531)\n * fixed: Connecting to an IMAP server configured to use\n `PREAUTH` caused Thunderbird to hang (bmo#1798161)\n * fixed: Error responses received in greeting header from NNTP\n servers did not display error message (bmo#1792281)\n * fixed: News messages sent using 'Send Later' failed to send\n after going back online (bmo#1794997)\n * fixed: 'Download/Sync Now...' did not completely sync all\n newsgroups before going offline (bmo#1795547)\n * fixed: Username was missing from error dialog on failed login\n to news server (bmo#1796964)\n * fixed: Thunderbird can now fetch RSS channel feeds with\n incomplete channel URL (bmo#1794775)\n * fixed: Add-on 'Contribute' button in Add-ons Manager did not\n work (bmo#1795751)\n * fixed: Help text for `/part` Matrix command was incorrect\n (bmo#1795578)\n * fixed: Invite Attendees dialog did not fetch free/busy info\n for attendees with encoded characters in their name\n (bmo#1797927)\n\n- Mozilla Thunderbird 102.4.2\n * changed: 'Address Book' button in Account Central will now\n create a CardDAV address book instead of a local address book\n (bmo#1793903)\n * fixed: Messages fetched from POP server in `Fetch headers\n only` mode disappeared when moved to different folder by\n filter action (bmo#1793374)\n * fixed: Thunderbird re-downloaded locally deleted messages\n from a POP server when 'Leave messages on server' and 'Until\n I delete them' were enabled (bmo#1796903)\n * fixed: Multiple password prompts for the same POP account\n could be displayed (bmo#1786920)\n * fixed: IMAP authentication failed on next startup if ImapMail\n folder was deleted by user (bmo#1793599)\n * fixed: Retrieving passwords for authenticated NNTP accounts\n could fail due to obsolete preferences in a users profile on\n every startup (bmo#1770594)\n * fixed: `Get Next n Messages` did not consistently fetch all\n messages requested from NNTP server (bmo#1794185)\n * fixed: `Get Messages` button unable to fetch messages from\n NNTP server if root folder not selected (bmo#1792362)\n * fixed: Thunderbird text branding did not always match locale\n of localized build (bmo#1786199)\n * fixed: Thunderbird installer and Thunderbird updater created\n Windows shortcuts with different names (bmo#1787264)\n * fixed: LDAP search filters unable to work with non-ASCII\n characters (bmo#1794306)\n * fixed: 'Today' highlighting in Calendar Month view did not\n update after date change at midnight (bmo#1795176)\n\n- Mozilla Thunderbird 102.4.1\n * new: Thunderbird will now catch and report errors parsing\n vCards that contain incorrectly formatted dates (bmo#1793415)\n * fixed: Dynamic language switching did not update interface\n when switched to right-to-left languages (bmo#1794289)\n * fixed: Custom header data was discarded after messages were\n saved as draft and reopened (bmo#195716)\n * fixed: `-remote` command line argument did not work,\n affecting integration with various applications such as\n LibreOffice (bmo#1793323)\n * fixed: Messages received via some SMS-to-email services could\n not display images (bmo#1774805)\n * fixed: VCards with nickname field set could not be edited\n (bmo#1793877)\n * fixed: Some recurring events were missing from Agenda on\n first load (bmo#1771168)\n * fixed: Download requests for remote ICS calendars incorrectly\n set 'Accept' header to text/xml (bmo#1793757)\n * fixed: Monthly events created on the 31st of a month with <30\n days placed first occurrence 1-2 days after the beginning of\n the following month (bmo#1266797)\n * fixed: Various visual and UX improvements\n (bmo#1781437,bmo#1785314,bmo#1794139,bmo#1794155,bmo#1794399)\n\n * changed: Thunderbird will automatically detect and repair\n OpenPGP key storage corruption caused by using the profile\n import tool in Thunderbird 102 (bmo#1790610)\n * fixed: POP message download into a large folder (~13000\n messages) caused Thunderbird to temporarily freeze\n (bmo#1792675)\n * fixed: Forwarding messages with special characters in Subject\n failed on Windows (bmo#1782173)\n * fixed: Links for FileLink attachments were not added when\n attachment filename contained Unicode characters\n (bmo#1789589)\n * fixed: Address Book display pane continued to show contacts\n after deletion (bmo#1777808)\n * fixed: Printing address book did not include all contact\n details (bmo#1782076)\n * fixed: CardDAV contacts without a Name property did not save\n to Google Contacts (bmo#1792101)\n * fixed: 'Publish Calendar' did not work (bmo#1794471)\n * fixed: Calendar database storage improvements (bmo#1792124)\n * fixed: Incorrectly handled error responses from CalDAV\n servers sometimes caused events to disappear from calendar\n (bmo#1792923)\n * fixed: Various visual and UX improvements (bmo#1776093,bmo#17\n 80040,bmo#1780425,bmo#1792876,bmo#1792872,bmo#1793466,bmo#179\n 3543)\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2022-4085,SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-4085,SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4085,SUSE-SLE-Product-WE-15-SP3-2022-4085,SUSE-SLE-Product-WE-15-SP4-2022-4085,openSUSE-SLE-15.3-2022-4085,openSUSE-SLE-15.4-2022-4085", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_4085-1.json", }, { category: "self", summary: "URL for SUSE-SU-2022:4085-1", url: "https://www.suse.com/support/update/announcement/2022/suse-su-20224085-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:4085-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-November/012993.html", }, { category: "self", summary: "SUSE Bug 1204421", url: "https://bugzilla.suse.com/1204421", }, { category: "self", summary: "SUSE Bug 1205270", url: "https://bugzilla.suse.com/1205270", }, { category: "self", summary: "SUSE CVE CVE-2022-42927 page", url: "https://www.suse.com/security/cve/CVE-2022-42927/", }, { category: "self", summary: "SUSE CVE CVE-2022-42928 page", url: "https://www.suse.com/security/cve/CVE-2022-42928/", }, { category: "self", summary: "SUSE CVE CVE-2022-42929 page", url: "https://www.suse.com/security/cve/CVE-2022-42929/", }, { category: "self", summary: "SUSE CVE CVE-2022-42932 page", url: "https://www.suse.com/security/cve/CVE-2022-42932/", }, { category: "self", summary: "SUSE CVE CVE-2022-45403 page", url: "https://www.suse.com/security/cve/CVE-2022-45403/", }, { category: "self", summary: "SUSE CVE CVE-2022-45404 page", url: "https://www.suse.com/security/cve/CVE-2022-45404/", }, { category: "self", summary: "SUSE CVE CVE-2022-45405 page", url: "https://www.suse.com/security/cve/CVE-2022-45405/", }, { category: "self", summary: "SUSE CVE CVE-2022-45406 page", url: "https://www.suse.com/security/cve/CVE-2022-45406/", }, { category: "self", summary: "SUSE CVE CVE-2022-45408 page", url: "https://www.suse.com/security/cve/CVE-2022-45408/", }, { category: "self", summary: "SUSE CVE CVE-2022-45409 page", url: "https://www.suse.com/security/cve/CVE-2022-45409/", }, { category: "self", summary: "SUSE CVE CVE-2022-45410 page", url: "https://www.suse.com/security/cve/CVE-2022-45410/", }, { category: "self", summary: "SUSE CVE CVE-2022-45411 page", url: "https://www.suse.com/security/cve/CVE-2022-45411/", }, { category: "self", summary: "SUSE CVE CVE-2022-45412 page", url: "https://www.suse.com/security/cve/CVE-2022-45412/", }, { category: "self", summary: "SUSE CVE CVE-2022-45416 page", url: "https://www.suse.com/security/cve/CVE-2022-45416/", }, { category: "self", summary: "SUSE CVE CVE-2022-45418 page", url: "https://www.suse.com/security/cve/CVE-2022-45418/", }, { category: "self", summary: "SUSE CVE CVE-2022-45420 page", url: "https://www.suse.com/security/cve/CVE-2022-45420/", }, { category: "self", summary: "SUSE CVE CVE-2022-45421 page", url: "https://www.suse.com/security/cve/CVE-2022-45421/", }, ], title: "Security update for MozillaThunderbird", tracking: { current_release_date: "2022-11-18T15:39:11Z", generator: { date: "2022-11-18T15:39:11Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:4085-1", initial_release_date: "2022-11-18T15:39:11Z", revision_history: [ { date: "2022-11-18T15:39:11Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", product: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", product_id: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", }, }, { category: "product_version", name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", product: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", product_id: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", }, }, { category: "product_version", name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", product: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", product_id: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "MozillaThunderbird-102.5.0-150200.8.90.1.i686", product: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.i686", product_id: "MozillaThunderbird-102.5.0-150200.8.90.1.i686", }, }, { category: "product_version", name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.i686", product: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.i686", product_id: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.i686", }, }, { category: "product_version", name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.i686", product: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.i686", product_id: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.i686", }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", product: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", product_id: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", }, }, { category: "product_version", name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", product: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", product_id: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", }, }, { category: "product_version", name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", product: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", product_id: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x", product: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x", product_id: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x", }, }, { category: "product_version", name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", product: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", product_id: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", }, }, { category: "product_version", name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", product: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", product_id: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", product: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", product_id: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", }, }, { category: "product_version", name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", product: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", product_id: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", }, }, { category: "product_version", name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", product: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", product_id: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product: { name: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:packagehub:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Package Hub 15 SP4", product: { name: "SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4", product_identification_helper: { cpe: "cpe:/o:suse:packagehub:15:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Workstation Extension 15 SP3", product: { name: "SUSE Linux Enterprise Workstation Extension 15 SP3", product_id: "SUSE Linux Enterprise Workstation Extension 15 SP3", product_identification_helper: { cpe: "cpe:/o:suse:sle-we:15:sp3", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Workstation Extension 15 SP4", product: { name: "SUSE Linux Enterprise Workstation Extension 15 SP4", product_id: "SUSE Linux Enterprise Workstation Extension 15 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sle-we:15:sp4", }, }, }, { category: "product_name", name: "openSUSE Leap 15.3", product: { name: "openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.3", }, }, }, { category: "product_name", name: "openSUSE Leap 15.4", product: { name: "openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.4", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP3", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP4", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP3", product_id: "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Workstation Extension 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP3", product_id: "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Workstation Extension 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP3", product_id: "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Workstation Extension 15 SP3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP4", product_id: "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Workstation Extension 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP4", product_id: "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Workstation Extension 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 as component of SUSE Linux Enterprise Workstation Extension 15 SP4", product_id: "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Workstation Extension 15 SP4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.3", product_id: "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.3", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", }, product_reference: "MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.4", }, ], }, vulnerabilities: [ { cve: "CVE-2022-42927", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-42927", }, ], notes: [ { category: "general", text: "A same-origin policy violation could have allowed the theft of cross-origin URL entries, leaking the result of a redirect, via `performance.getEntries()`. This vulnerability affects Firefox < 106, Firefox ESR < 102.4, and Thunderbird < 102.4.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-42927", url: "https://www.suse.com/security/cve/CVE-2022-42927", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "important", }, ], title: "CVE-2022-42927", }, { cve: "CVE-2022-42928", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-42928", }, ], notes: [ { category: "general", text: "Certain types of allocations were missing annotations that, if the Garbage Collector was in a specific state, could have lead to memory corruption and a potentially exploitable crash. This vulnerability affects Firefox < 106, Firefox ESR < 102.4, and Thunderbird < 102.4.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-42928", url: "https://www.suse.com/security/cve/CVE-2022-42928", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "important", }, ], title: "CVE-2022-42928", }, { cve: "CVE-2022-42929", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-42929", }, ], notes: [ { category: "general", text: "If a website called `window.print()` in a particular way, it could cause a denial of service of the browser, which may persist beyond browser restart depending on the user's session restore settings. This vulnerability affects Firefox < 106, Firefox ESR < 102.4, and Thunderbird < 102.4.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-42929", url: "https://www.suse.com/security/cve/CVE-2022-42929", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "important", }, ], title: "CVE-2022-42929", }, { cve: "CVE-2022-42932", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-42932", }, ], notes: [ { category: "general", text: "Mozilla developers Ashley Hale and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 105 and Firefox ESR 102.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 106, Firefox ESR < 102.4, and Thunderbird < 102.4.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-42932", url: "https://www.suse.com/security/cve/CVE-2022-42932", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "important", }, ], title: "CVE-2022-42932", }, { cve: "CVE-2022-45403", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45403", }, ], notes: [ { category: "general", text: "Service Workers should not be able to infer information about opaque cross-origin responses; but timing information for cross-origin media combined with Range requests might have allowed them to determine the presence or length of a media file. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45403", url: "https://www.suse.com/security/cve/CVE-2022-45403", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45403", }, { cve: "CVE-2022-45404", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45404", }, ], notes: [ { category: "general", text: "Through a series of popup and <code>window.print()</code> calls, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45404", url: "https://www.suse.com/security/cve/CVE-2022-45404", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45404", }, { cve: "CVE-2022-45405", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45405", }, ], notes: [ { category: "general", text: "Freeing arbitrary <code>nsIInputStream</code>'s on a different thread than creation could have led to a use-after-free and potentially exploitable crash. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45405", url: "https://www.suse.com/security/cve/CVE-2022-45405", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45405", }, { cve: "CVE-2022-45406", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45406", }, ], notes: [ { category: "general", text: "If an out-of-memory condition occurred when creating a JavaScript global, a JavaScript realm may be deleted while references to it lived on in a BaseShape. This could lead to a use-after-free causing a potentially exploitable crash. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45406", url: "https://www.suse.com/security/cve/CVE-2022-45406", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45406", }, { cve: "CVE-2022-45408", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45408", }, ], notes: [ { category: "general", text: "Through a series of popups that reuse windowName, an attacker can cause a window to go fullscreen without the user seeing the notification prompt, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45408", url: "https://www.suse.com/security/cve/CVE-2022-45408", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45408", }, { cve: "CVE-2022-45409", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45409", }, ], notes: [ { category: "general", text: "The garbage collector could have been aborted in several states and zones and <code>GCRuntime::finishCollection</code> may not have been called, leading to a use-after-free and potentially exploitable crash. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45409", url: "https://www.suse.com/security/cve/CVE-2022-45409", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45409", }, { cve: "CVE-2022-45410", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45410", }, ], notes: [ { category: "general", text: "When a ServiceWorker intercepted a request with <code>FetchEvent</code>, the origin of the request was lost after the ServiceWorker took ownership of it. This had the effect of negating SameSite cookie protections. This was addressed in the spec and then in browsers. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45410", url: "https://www.suse.com/security/cve/CVE-2022-45410", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45410", }, { cve: "CVE-2022-45411", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45411", }, ], notes: [ { category: "general", text: "Cross-Site Tracing occurs when a server will echo a request back via the Trace method, allowing an XSS attack to access to authorization headers and cookies inaccessible to JavaScript (such as cookies protected by HTTPOnly). To mitigate this attack, browsers placed limits on <code>fetch()</code> and XMLHttpRequest; however some webservers have implemented non-standard headers such as <code>X-Http-Method-Override</code> that override the HTTP method, and made this attack possible again. Thunderbird has applied the same mitigations to the use of this and similar headers. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45411", url: "https://www.suse.com/security/cve/CVE-2022-45411", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45411", }, { cve: "CVE-2022-45412", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45412", }, ], notes: [ { category: "general", text: "When resolving a symlink such as <code>file:///proc/self/fd/1</code>, an error message may be produced where the symlink was resolved to a string containing unitialized memory in the buffer. <br>*This bug only affects Thunderbird on Unix-based operated systems (Android, Linux, MacOS). Windows is unaffected.*. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45412", url: "https://www.suse.com/security/cve/CVE-2022-45412", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45412", }, { cve: "CVE-2022-45416", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45416", }, ], notes: [ { category: "general", text: "Keyboard events reference strings like \"KeyA\" that were at fixed, known, and widely-spread addresses. Cache-based timing attacks such as Prime+Probe could have possibly figured out which keys were being pressed. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45416", url: "https://www.suse.com/security/cve/CVE-2022-45416", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45416", }, { cve: "CVE-2022-45418", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45418", }, ], notes: [ { category: "general", text: "If a custom mouse cursor is specified in CSS, under certain circumstances the cursor could have been drawn over the browser UI, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45418", url: "https://www.suse.com/security/cve/CVE-2022-45418", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45418", }, { cve: "CVE-2022-45420", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45420", }, ], notes: [ { category: "general", text: "Use tables inside of an iframe, an attacker could have caused iframe contents to be rendered outside the boundaries of the iframe, resulting in potential user confusion or spoofing attacks. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45420", url: "https://www.suse.com/security/cve/CVE-2022-45420", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45420", }, { cve: "CVE-2022-45421", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-45421", }, ], notes: [ { category: "general", text: "Mozilla developers Andrew McCreight and Gabriele Svelto reported memory safety bugs present in Thunderbird 102.4. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 102.5, Thunderbird < 102.5, and Firefox < 107.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-45421", url: "https://www.suse.com/security/cve/CVE-2022-45421", }, { category: "external", summary: "SUSE Bug 1206343 for CVE-2022-45421", url: "https://bugzilla.suse.com/1206343", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "SUSE Linux Enterprise Workstation Extension 15 SP4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.3:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-common-102.5.0-150200.8.90.1.x86_64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.aarch64", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.ppc64le", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.s390x", "openSUSE Leap 15.4:MozillaThunderbird-translations-other-102.5.0-150200.8.90.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-11-18T15:39:11Z", details: "critical", }, ], title: "CVE-2022-45421", }, ], }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.