Bug 2463481 (CVE-2026-7323)
| Summary: | CVE-2026-7323 firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.10.1 and Firefox 150.0.1 | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | OSIDB Bzimport <bzimport> |
| Component: | vulnerability | Assignee: | Product Security <prodsec-ir-bot> |
| Status: | NEW --- | QA Contact: | |
| Severity: | high | Docs Contact: | |
| Priority: | high | ||
| Version: | unspecified | CC: | gotiwari, jgrulich, jhorak, mvyas, rhel-process-autobot, tpopela, watson-tool-maintainers |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | --- | |
| Doc Text: |
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue:
Memory safety bugs present in Thunderbird ESR 140.10.0 and Thunderbird 150.0.0. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.
|
Story Points: | --- |
| Clone Of: | Environment: | ||
| Last Closed: | Type: | --- | |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
OSIDB Bzimport
2026-04-28 15:01:29 UTC
This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2026:19153 https://access.redhat.com/errata/RHSA-2026:19153 This issue has been addressed in the following products: Red Hat Enterprise Linux 10 Via RHSA-2026:19157 https://access.redhat.com/errata/RHSA-2026:19157 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2026:19348 https://access.redhat.com/errata/RHSA-2026:19348 This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2026:19370 https://access.redhat.com/errata/RHSA-2026:19370 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2026:19588 https://access.redhat.com/errata/RHSA-2026:19588 This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2026:20586 https://access.redhat.com/errata/RHSA-2026:20586 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2026:21743 https://access.redhat.com/errata/RHSA-2026:21743 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions Via RHSA-2026:22324 https://access.redhat.com/errata/RHSA-2026:22324 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Via RHSA-2026:22410 https://access.redhat.com/errata/RHSA-2026:22410 This issue has been addressed in the following products: Red Hat Enterprise Linux 10.0 Extended Update Support Via RHSA-2026:22408 https://access.redhat.com/errata/RHSA-2026:22408 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.6 Extended Update Support Via RHSA-2026:22409 https://access.redhat.com/errata/RHSA-2026:22409 This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Extended Lifecycle Support Via RHSA-2026:22708 https://access.redhat.com/errata/RHSA-2026:22708 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Via RHSA-2026:22712 https://access.redhat.com/errata/RHSA-2026:22712 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Red Hat Enterprise Linux 8.8 Telecommunications Update Service Via RHSA-2026:22847 https://access.redhat.com/errata/RHSA-2026:22847 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On Via RHSA-2026:24345 https://access.redhat.com/errata/RHSA-2026:24345 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On Via RHSA-2026:24718 https://access.redhat.com/errata/RHSA-2026:24718 This issue has been addressed in the following products: Red Hat Enterprise Linux 10.0 Extended Update Support Via RHSA-2026:24719 https://access.redhat.com/errata/RHSA-2026:24719 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions Red Hat Enterprise Linux 8.8 Telecommunications Update Service Via RHSA-2026:24717 https://access.redhat.com/errata/RHSA-2026:24717 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.6 Extended Update Support Via RHSA-2026:24721 https://access.redhat.com/errata/RHSA-2026:24721 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions Via RHSA-2026:24844 https://access.redhat.com/errata/RHSA-2026:24844 This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions Via RHSA-2026:24846 https://access.redhat.com/errata/RHSA-2026:24846 This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On Via RHSA-2026:25014 https://access.redhat.com/errata/RHSA-2026:25014 |