Thunderbird unexpectedly enabled JavaScript in the composition area. The JavaScript execution context was limited to this area and did not receive chrome-level privileges, but could be used as a stepping stone to further an attack with other vulnerabilities. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2021-54/#CVE-2021-43528
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Extended Update Support Via RHSA-2021:5047 https://access.redhat.com/errata/RHSA-2021:5047
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2021:5045 https://access.redhat.com/errata/RHSA-2021:5045
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Extended Update Support Via RHSA-2021:5048 https://access.redhat.com/errata/RHSA-2021:5048
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2021:5046 https://access.redhat.com/errata/RHSA-2021:5046
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2021:5055 https://access.redhat.com/errata/RHSA-2021:5055