Skip to navigation

Security Advisory Important: thunderbird security and bug fix update

Advisory: RHSA-2011:0374-1
Type: Security Advisory
Severity: Important
Issued on: 2011-03-22
Last updated on: 2011-03-22
Affected Products: RHEL Optional Productivity Applications (v. 5 server)
RHEL Optional Productivity Applications EUS (v. 5.6.z server)
Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux AS (v. 4.8.z)
Red Hat Enterprise Linux Desktop (v. 5 client)
Red Hat Enterprise Linux Desktop (v. 6)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux ES (v. 4.8.z)
Red Hat Enterprise Linux Server (v. 6)
Red Hat Enterprise Linux Server EUS (v. 6.0.z)
Red Hat Enterprise Linux WS (v. 4)
Red Hat Enterprise Linux Workstation (v. 6)

Details

An updated thunderbird package that fixes one security issue and one bug is
now available for Red Hat Enterprise Linux 4, 5, and 6.

The Red Hat Security Response Team has rated this update as having
important security impact.

Mozilla Thunderbird is a standalone mail and newsgroup client.

This erratum blacklists a small number of HTTPS certificates. (BZ#689430)

This update also fixes the following bug:

* The RHSA-2011:0312 and RHSA-2011:0311 updates introduced a regression,
preventing some Java content and plug-ins written in Java from loading.
With this update, the Java content and plug-ins work as expected.
(BZ#683076)

All Thunderbird users should upgrade to this updated package, which
resolves these issues. All running instances of Thunderbird must be
restarted for the update to take effect.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Updated packages

RHEL Optional Productivity Applications (v. 5 server)

SRPMS:
thunderbird-2.0.0.24-15.el5_6.src.rpm
File outdated by:  RHSA-2011:0887
    MD5: 31c6a5cb9e273662c87ea4471a7b3081
SHA-256: 95ff6924a31f657a56130732e04862bed20cd6ece364edfeeb5a70675dcd78a7
 
IA-32:
thunderbird-2.0.0.24-15.el5_6.i386.rpm
File outdated by:  RHSA-2014:0316
    MD5: 7626bb222e576e4eae54dcd621e54b90
SHA-256: 8078ed268925d45aeb2b825a4c7d3ddacaf03170fda929426a3cc9f0b6c5ab9c
 
x86_64:
thunderbird-2.0.0.24-15.el5_6.x86_64.rpm
File outdated by:  RHSA-2014:0316
    MD5: 2941e536e7413c6f0958e46878922a82
SHA-256: 49b563aa27dec3ddb79fd6c63b658876eaefa4bc9ce4ebda12caee8d71c7b24d
 
RHEL Optional Productivity Applications EUS (v. 5.6.z server)

SRPMS:
thunderbird-2.0.0.24-15.el5_6.src.rpm
File outdated by:  RHSA-2011:0887
    MD5: 31c6a5cb9e273662c87ea4471a7b3081
SHA-256: 95ff6924a31f657a56130732e04862bed20cd6ece364edfeeb5a70675dcd78a7
 
IA-32:
thunderbird-2.0.0.24-15.el5_6.i386.rpm
File outdated by:  RHSA-2011:0887
    MD5: 7626bb222e576e4eae54dcd621e54b90
SHA-256: 8078ed268925d45aeb2b825a4c7d3ddacaf03170fda929426a3cc9f0b6c5ab9c
 
x86_64:
thunderbird-2.0.0.24-15.el5_6.x86_64.rpm
File outdated by:  RHSA-2011:0887
    MD5: 2941e536e7413c6f0958e46878922a82
SHA-256: 49b563aa27dec3ddb79fd6c63b658876eaefa4bc9ce4ebda12caee8d71c7b24d
 
Red Hat Desktop (v. 4)

SRPMS:
thunderbird-1.5.0.12-36.el4.src.rpm
File outdated by:  RHSA-2012:0085
    MD5: 606d39e8c2b437d432807ea3f2b3001e
SHA-256: da310dc421ce90032c8526557bf313ad7a9ddd4a551905d57f80277ffb60ebdc
 
IA-32:
thunderbird-1.5.0.12-36.el4.i386.rpm
File outdated by:  RHSA-2012:0085
    MD5: 65f175277e64b10e449d7dc713a77466
SHA-256: 99b6c77e2c512972a5f032abcbdb2bd5c97e09af98b5854643f0c26a3c8e5f27
 
x86_64:
thunderbird-1.5.0.12-36.el4.x86_64.rpm
File outdated by:  RHSA-2012:0085
    MD5: 75822cf653f07a4164fe5b7e6dd594f3
SHA-256: 3290720c53f058b2fd7d2a9e4c678b3bd8874d897aea632d78ac4e9d2a020e5b
 
Red Hat Enterprise Linux AS (v. 4)

SRPMS:
thunderbird-1.5.0.12-36.el4.src.rpm
File outdated by:  RHSA-2012:0085
    MD5: 606d39e8c2b437d432807ea3f2b3001e
SHA-256: da310dc421ce90032c8526557bf313ad7a9ddd4a551905d57f80277ffb60ebdc
 
IA-32:
thunderbird-1.5.0.12-36.el4.i386.rpm
File outdated by:  RHSA-2012:0085
    MD5: 65f175277e64b10e449d7dc713a77466
SHA-256: 99b6c77e2c512972a5f032abcbdb2bd5c97e09af98b5854643f0c26a3c8e5f27
 
IA-64:
thunderbird-1.5.0.12-36.el4.ia64.rpm
File outdated by:  RHSA-2012:0085
    MD5: 67dd464b2103e2fbfa18ffc483ab1197
SHA-256: 83655453032101e7457673a542f1b782a1b56a507e9253e7d24c2cef15559a2c
 
PPC:
thunderbird-1.5.0.12-36.el4.ppc.rpm
File outdated by:  RHSA-2012:0085
    MD5: 29f71d02606c8167041a4c11d05799df
SHA-256: 37e0e2edd7e999f2e27071bd5dbae145eda078f8151173660b7df1c5450994f8
 
s390:
thunderbird-1.5.0.12-36.el4.s390.rpm
File outdated by:  RHSA-2012:0085
    MD5: 56b1d9921cdc3581c56b138f3fee790d
SHA-256: 7aba330875adb56e851f6bb3bdcd2cb6a873a4a3f50ccc688059265b8cf0137d
 
s390x:
thunderbird-1.5.0.12-36.el4.s390x.rpm
File outdated by:  RHSA-2012:0085
    MD5: 5f73b389ac3cfcdc257f330a0e78f811
SHA-256: ca0b179ecac29aa7649bc28d5f8f9b680aee0bc3b8e21c336c78b2fff8909952
 
x86_64:
thunderbird-1.5.0.12-36.el4.x86_64.rpm
File outdated by:  RHSA-2012:0085
    MD5: 75822cf653f07a4164fe5b7e6dd594f3
SHA-256: 3290720c53f058b2fd7d2a9e4c678b3bd8874d897aea632d78ac4e9d2a020e5b
 
Red Hat Enterprise Linux AS (v. 4.8.z)

SRPMS:
thunderbird-1.5.0.12-36.el4.src.rpm
File outdated by:  RHSA-2012:0085
    MD5: 606d39e8c2b437d432807ea3f2b3001e
SHA-256: da310dc421ce90032c8526557bf313ad7a9ddd4a551905d57f80277ffb60ebdc
 
IA-32:
thunderbird-1.5.0.12-36.el4.i386.rpm
File outdated by:  RHSA-2011:0887
    MD5: 65f175277e64b10e449d7dc713a77466
SHA-256: 99b6c77e2c512972a5f032abcbdb2bd5c97e09af98b5854643f0c26a3c8e5f27
 
IA-64:
thunderbird-1.5.0.12-36.el4.ia64.rpm
File outdated by:  RHSA-2011:0887
    MD5: 67dd464b2103e2fbfa18ffc483ab1197
SHA-256: 83655453032101e7457673a542f1b782a1b56a507e9253e7d24c2cef15559a2c
 
PPC:
thunderbird-1.5.0.12-36.el4.ppc.rpm
File outdated by:  RHSA-2011:0887
    MD5: 29f71d02606c8167041a4c11d05799df
SHA-256: 37e0e2edd7e999f2e27071bd5dbae145eda078f8151173660b7df1c5450994f8
 
s390:
thunderbird-1.5.0.12-36.el4.s390.rpm
File outdated by:  RHSA-2011:0887
    MD5: 56b1d9921cdc3581c56b138f3fee790d
SHA-256: 7aba330875adb56e851f6bb3bdcd2cb6a873a4a3f50ccc688059265b8cf0137d
 
s390x:
thunderbird-1.5.0.12-36.el4.s390x.rpm
File outdated by:  RHSA-2011:0887
    MD5: 5f73b389ac3cfcdc257f330a0e78f811
SHA-256: ca0b179ecac29aa7649bc28d5f8f9b680aee0bc3b8e21c336c78b2fff8909952
 
x86_64:
thunderbird-1.5.0.12-36.el4.x86_64.rpm
File outdated by:  RHSA-2011:0887
    MD5: 75822cf653f07a4164fe5b7e6dd594f3
SHA-256: 3290720c53f058b2fd7d2a9e4c678b3bd8874d897aea632d78ac4e9d2a020e5b
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
thunderbird-2.0.0.24-15.el5_6.src.rpm
File outdated by:  RHSA-2011:0887
    MD5: 31c6a5cb9e273662c87ea4471a7b3081
SHA-256: 95ff6924a31f657a56130732e04862bed20cd6ece364edfeeb5a70675dcd78a7
 
IA-32:
thunderbird-2.0.0.24-15.el5_6.i386.rpm
File outdated by:  RHSA-2014:0316
    MD5: 7626bb222e576e4eae54dcd621e54b90
SHA-256: 8078ed268925d45aeb2b825a4c7d3ddacaf03170fda929426a3cc9f0b6c5ab9c
 
x86_64:
thunderbird-2.0.0.24-15.el5_6.x86_64.rpm
File outdated by:  RHSA-2014:0316
    MD5: 2941e536e7413c6f0958e46878922a82
SHA-256: 49b563aa27dec3ddb79fd6c63b658876eaefa4bc9ce4ebda12caee8d71c7b24d
 
Red Hat Enterprise Linux Desktop (v. 6)

SRPMS:
thunderbird-3.1.9-3.el6_0.src.rpm
File outdated by:  RHSA-2014:0316
    MD5: 4df1ea52dd38f24744258fd579445fd0
SHA-256: 900272d4492f6a1f3841b887a2d61045e8ff4a6bedfd76299af67ddfc1e8a76a
 
IA-32:
thunderbird-3.1.9-3.el6_0.i686.rpm
File outdated by:  RHSA-2014:0316
    MD5: bccef59a179c697463f6ed6ba2e60183
SHA-256: 5e9c35a07ea47b485a2d11cad5e944fd152bc79178bc6981d46b832bb2bea969
thunderbird-debuginfo-3.1.9-3.el6_0.i686.rpm
File outdated by:  RHSA-2014:0316
    MD5: 54d106912accbe17bbad37d8a11aca20
SHA-256: 4ef065bee1503b639cddd816f034344fcda5f4c2e59a75cd4c8c56ac1135a958
 
x86_64:
thunderbird-3.1.9-3.el6_0.x86_64.rpm
File outdated by:  RHSA-2014:0316
    MD5: a2425531697dcfbd54bf22755f94b6ac
SHA-256: 4c16650f76a4d119d80afdb9433a1d23f0adf7cd4d205e6e196278d0dcb1caa4
thunderbird-debuginfo-3.1.9-3.el6_0.x86_64.rpm
File outdated by:  RHSA-2014:0316
    MD5: 8f761d76e65ac0220ed116ea9c95cd0c
SHA-256: f63e7d1f7da0947fe7f3e7bc3a03ea9482bd2ef2edc3bc831881b4ae4db02bc3
 
Red Hat Enterprise Linux ES (v. 4)

SRPMS:
thunderbird-1.5.0.12-36.el4.src.rpm
File outdated by:  RHSA-2012:0085
    MD5: 606d39e8c2b437d432807ea3f2b3001e
SHA-256: da310dc421ce90032c8526557bf313ad7a9ddd4a551905d57f80277ffb60ebdc
 
IA-32:
thunderbird-1.5.0.12-36.el4.i386.rpm
File outdated by:  RHSA-2012:0085
    MD5: 65f175277e64b10e449d7dc713a77466
SHA-256: 99b6c77e2c512972a5f032abcbdb2bd5c97e09af98b5854643f0c26a3c8e5f27
 
IA-64:
thunderbird-1.5.0.12-36.el4.ia64.rpm
File outdated by:  RHSA-2012:0085
    MD5: 67dd464b2103e2fbfa18ffc483ab1197
SHA-256: 83655453032101e7457673a542f1b782a1b56a507e9253e7d24c2cef15559a2c
 
x86_64:
thunderbird-1.5.0.12-36.el4.x86_64.rpm
File outdated by:  RHSA-2012:0085
    MD5: 75822cf653f07a4164fe5b7e6dd594f3
SHA-256: 3290720c53f058b2fd7d2a9e4c678b3bd8874d897aea632d78ac4e9d2a020e5b
 
Red Hat Enterprise Linux ES (v. 4.8.z)

SRPMS:
thunderbird-1.5.0.12-36.el4.src.rpm
File outdated by:  RHSA-2012:0085
    MD5: 606d39e8c2b437d432807ea3f2b3001e
SHA-256: da310dc421ce90032c8526557bf313ad7a9ddd4a551905d57f80277ffb60ebdc
 
IA-32:
thunderbird-1.5.0.12-36.el4.i386.rpm
File outdated by:  RHSA-2011:0887
    MD5: 65f175277e64b10e449d7dc713a77466
SHA-256: 99b6c77e2c512972a5f032abcbdb2bd5c97e09af98b5854643f0c26a3c8e5f27
 
IA-64:
thunderbird-1.5.0.12-36.el4.ia64.rpm
File outdated by:  RHSA-2011:0887
    MD5: 67dd464b2103e2fbfa18ffc483ab1197
SHA-256: 83655453032101e7457673a542f1b782a1b56a507e9253e7d24c2cef15559a2c
 
x86_64:
thunderbird-1.5.0.12-36.el4.x86_64.rpm
File outdated by:  RHSA-2011:0887
    MD5: 75822cf653f07a4164fe5b7e6dd594f3
SHA-256: 3290720c53f058b2fd7d2a9e4c678b3bd8874d897aea632d78ac4e9d2a020e5b
 
Red Hat Enterprise Linux Server (v. 6)

SRPMS:
thunderbird-3.1.9-3.el6_0.src.rpm
File outdated by:  RHSA-2014:0316
    MD5: 4df1ea52dd38f24744258fd579445fd0
SHA-256: 900272d4492f6a1f3841b887a2d61045e8ff4a6bedfd76299af67ddfc1e8a76a
 
IA-32:
thunderbird-3.1.9-3.el6_0.i686.rpm
File outdated by:  RHSA-2014:0316
    MD5: bccef59a179c697463f6ed6ba2e60183
SHA-256: 5e9c35a07ea47b485a2d11cad5e944fd152bc79178bc6981d46b832bb2bea969
thunderbird-debuginfo-3.1.9-3.el6_0.i686.rpm
File outdated by:  RHSA-2014:0316
    MD5: 54d106912accbe17bbad37d8a11aca20
SHA-256: 4ef065bee1503b639cddd816f034344fcda5f4c2e59a75cd4c8c56ac1135a958
 
PPC:
thunderbird-3.1.9-3.el6_0.ppc64.rpm
File outdated by:  RHSA-2014:0316
    MD5: e07e0ea993ab30d4c13e694acbdc5b63
SHA-256: 94ff539e637be9e96e219effe776ba9330f053978da8b8236cbc0c622286c97e
thunderbird-debuginfo-3.1.9-3.el6_0.ppc64.rpm
File outdated by:  RHSA-2014:0316
    MD5: 2f876fee6d7aa831bfc182f12ac3412d
SHA-256: 59b4474f0acc314a6e27cb766a6ee62a47efe1d2fccd18eb2b84c27e5b5a4e0b
 
s390x:
thunderbird-3.1.9-3.el6_0.s390x.rpm
File outdated by:  RHSA-2014:0316
    MD5: b02ff61205c650b35438dfa794a9b30d
SHA-256: 4eab54d2fd55d6643358814a740452dc032400a7c666c1d19ab3987ed209e3eb
thunderbird-debuginfo-3.1.9-3.el6_0.s390x.rpm
File outdated by:  RHSA-2014:0316
    MD5: b8988698833273724f8620e7d7e66ea9
SHA-256: 5f2b83d57efc3a7aeff39bea26b20f9b7a70f94dc12fa7d948629ec3f728032c
 
x86_64:
thunderbird-3.1.9-3.el6_0.x86_64.rpm
File outdated by:  RHSA-2014:0316
    MD5: a2425531697dcfbd54bf22755f94b6ac
SHA-256: 4c16650f76a4d119d80afdb9433a1d23f0adf7cd4d205e6e196278d0dcb1caa4
thunderbird-debuginfo-3.1.9-3.el6_0.x86_64.rpm
File outdated by:  RHSA-2014:0316
    MD5: 8f761d76e65ac0220ed116ea9c95cd0c
SHA-256: f63e7d1f7da0947fe7f3e7bc3a03ea9482bd2ef2edc3bc831881b4ae4db02bc3
 
Red Hat Enterprise Linux Server EUS (v. 6.0.z)

SRPMS:
thunderbird-3.1.9-3.el6_0.src.rpm
File outdated by:  RHSA-2014:0316
    MD5: 4df1ea52dd38f24744258fd579445fd0
SHA-256: 900272d4492f6a1f3841b887a2d61045e8ff4a6bedfd76299af67ddfc1e8a76a
 
IA-32:
thunderbird-3.1.9-3.el6_0.i686.rpm
File outdated by:  RHSA-2011:0475
    MD5: bccef59a179c697463f6ed6ba2e60183
SHA-256: 5e9c35a07ea47b485a2d11cad5e944fd152bc79178bc6981d46b832bb2bea969
thunderbird-debuginfo-3.1.9-3.el6_0.i686.rpm
File outdated by:  RHSA-2011:0475
    MD5: 54d106912accbe17bbad37d8a11aca20
SHA-256: 4ef065bee1503b639cddd816f034344fcda5f4c2e59a75cd4c8c56ac1135a958
 
PPC:
thunderbird-3.1.9-3.el6_0.ppc64.rpm
File outdated by:  RHSA-2011:0475
    MD5: e07e0ea993ab30d4c13e694acbdc5b63
SHA-256: 94ff539e637be9e96e219effe776ba9330f053978da8b8236cbc0c622286c97e
thunderbird-debuginfo-3.1.9-3.el6_0.ppc64.rpm
File outdated by:  RHSA-2011:0475
    MD5: 2f876fee6d7aa831bfc182f12ac3412d
SHA-256: 59b4474f0acc314a6e27cb766a6ee62a47efe1d2fccd18eb2b84c27e5b5a4e0b
 
s390x:
thunderbird-3.1.9-3.el6_0.s390x.rpm
File outdated by:  RHSA-2011:0475
    MD5: b02ff61205c650b35438dfa794a9b30d
SHA-256: 4eab54d2fd55d6643358814a740452dc032400a7c666c1d19ab3987ed209e3eb
thunderbird-debuginfo-3.1.9-3.el6_0.s390x.rpm
File outdated by:  RHSA-2011:0475
    MD5: b8988698833273724f8620e7d7e66ea9
SHA-256: 5f2b83d57efc3a7aeff39bea26b20f9b7a70f94dc12fa7d948629ec3f728032c
 
x86_64:
thunderbird-3.1.9-3.el6_0.x86_64.rpm
File outdated by:  RHSA-2011:0475
    MD5: a2425531697dcfbd54bf22755f94b6ac
SHA-256: 4c16650f76a4d119d80afdb9433a1d23f0adf7cd4d205e6e196278d0dcb1caa4
thunderbird-debuginfo-3.1.9-3.el6_0.x86_64.rpm
File outdated by:  RHSA-2011:0475
    MD5: 8f761d76e65ac0220ed116ea9c95cd0c
SHA-256: f63e7d1f7da0947fe7f3e7bc3a03ea9482bd2ef2edc3bc831881b4ae4db02bc3
 
Red Hat Enterprise Linux WS (v. 4)

SRPMS:
thunderbird-1.5.0.12-36.el4.src.rpm
File outdated by:  RHSA-2012:0085
    MD5: 606d39e8c2b437d432807ea3f2b3001e
SHA-256: da310dc421ce90032c8526557bf313ad7a9ddd4a551905d57f80277ffb60ebdc
 
IA-32:
thunderbird-1.5.0.12-36.el4.i386.rpm
File outdated by:  RHSA-2012:0085
    MD5: 65f175277e64b10e449d7dc713a77466
SHA-256: 99b6c77e2c512972a5f032abcbdb2bd5c97e09af98b5854643f0c26a3c8e5f27
 
IA-64:
thunderbird-1.5.0.12-36.el4.ia64.rpm
File outdated by:  RHSA-2012:0085
    MD5: 67dd464b2103e2fbfa18ffc483ab1197
SHA-256: 83655453032101e7457673a542f1b782a1b56a507e9253e7d24c2cef15559a2c
 
x86_64:
thunderbird-1.5.0.12-36.el4.x86_64.rpm
File outdated by:  RHSA-2012:0085
    MD5: 75822cf653f07a4164fe5b7e6dd594f3
SHA-256: 3290720c53f058b2fd7d2a9e4c678b3bd8874d897aea632d78ac4e9d2a020e5b
 
Red Hat Enterprise Linux Workstation (v. 6)

SRPMS:
thunderbird-3.1.9-3.el6_0.src.rpm
File outdated by:  RHSA-2014:0316
    MD5: 4df1ea52dd38f24744258fd579445fd0
SHA-256: 900272d4492f6a1f3841b887a2d61045e8ff4a6bedfd76299af67ddfc1e8a76a
 
IA-32:
thunderbird-3.1.9-3.el6_0.i686.rpm
File outdated by:  RHSA-2014:0316
    MD5: bccef59a179c697463f6ed6ba2e60183
SHA-256: 5e9c35a07ea47b485a2d11cad5e944fd152bc79178bc6981d46b832bb2bea969
thunderbird-debuginfo-3.1.9-3.el6_0.i686.rpm
File outdated by:  RHSA-2014:0316
    MD5: 54d106912accbe17bbad37d8a11aca20
SHA-256: 4ef065bee1503b639cddd816f034344fcda5f4c2e59a75cd4c8c56ac1135a958
 
x86_64:
thunderbird-3.1.9-3.el6_0.x86_64.rpm
File outdated by:  RHSA-2014:0316
    MD5: a2425531697dcfbd54bf22755f94b6ac
SHA-256: 4c16650f76a4d119d80afdb9433a1d23f0adf7cd4d205e6e196278d0dcb1caa4
thunderbird-debuginfo-3.1.9-3.el6_0.x86_64.rpm
File outdated by:  RHSA-2014:0316
    MD5: 8f761d76e65ac0220ed116ea9c95cd0c
SHA-256: f63e7d1f7da0947fe7f3e7bc3a03ea9482bd2ef2edc3bc831881b4ae4db02bc3
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

683076 - Mozilla 3.6.14 regression [rhel-6.1]
689430 - Compromised certificates


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/