{"affected":[{"ecosystem_specific":{"binaries":[{"MozillaThunderbird":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-common":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-other":"140.3.0-150200.8.239.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP6","name":"MozillaThunderbird","purl":"pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"140.3.0-150200.8.239.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaThunderbird":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-common":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-other":"140.3.0-150200.8.239.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP7","name":"MozillaThunderbird","purl":"pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"140.3.0-150200.8.239.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaThunderbird":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-common":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-other":"140.3.0-150200.8.239.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 15 SP6","name":"MozillaThunderbird","purl":"pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"140.3.0-150200.8.239.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaThunderbird":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-common":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-other":"140.3.0-150200.8.239.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 15 SP7","name":"MozillaThunderbird","purl":"pkg:rpm/suse/MozillaThunderbird&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"140.3.0-150200.8.239.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"MozillaThunderbird":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-common":"140.3.0-150200.8.239.1","MozillaThunderbird-translations-other":"140.3.0-150200.8.239.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.6","name":"MozillaThunderbird","purl":"pkg:rpm/opensuse/MozillaThunderbird&distro=openSUSE%20Leap%2015.6"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"140.3.0-150200.8.239.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for MozillaThunderbird fixes the following issues:\n\nUpdate to Mozilla Thunderbird 140.3 (bsc#1249391).\n\nSecurity issues fixed:\n\n- MFSA 2025-78\n  * CVE-2025-10527: sandbox escape due to use-after-free in the Graphics: Canvas2D component.\n  * CVE-2025-10528: sandbox escape due to undefined behavior, invalid pointer in the Graphics: Canvas2D component.\n  * CVE-2025-10529: same-origin policy bypass in the Layout component.\n  * CVE-2025-10532: incorrect boundary conditions in the JavaScript: GC component.\n  * CVE-2025-10533: integer overflow in the SVG component.\n  * CVE-2025-10536: information disclosure in the Networking: Cache component.\n  * CVE-2025-10537: memory safety bugs fixed in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird\n    143.\n\nOther issues fixed:\n\n- Right-clicking 'List-ID' -> 'Unsubscribe' created double encoded draft subject.\n- Thunderbird could crash on startup.\n- Thunderbird could crash when importing mail.\n- Opening Website header link in RSS feed incorrectly re-encoded URL parameters.\n","id":"SUSE-SU-2025:03309-1","modified":"2025-09-23T14:30:31Z","published":"2025-09-23T14:30:31Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202503309-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1249391"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10527"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10528"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10529"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10532"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10533"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10536"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-10537"}],"related":["CVE-2025-10527","CVE-2025-10528","CVE-2025-10529","CVE-2025-10532","CVE-2025-10533","CVE-2025-10536","CVE-2025-10537"],"summary":"Security update for MozillaThunderbird","upstream":["CVE-2025-10527","CVE-2025-10528","CVE-2025-10529","CVE-2025-10532","CVE-2025-10533","CVE-2025-10536","CVE-2025-10537"]}