The encrypted subject of an email message could be incorrectly and permanently assigned to an arbitrary other email message in Thunderbird's local cache. Consequently, when replying to the contaminated email message, the user might accidentally leak the confidential subject to a third party. While this update fixes the bug and avoids future message contamination, it does not automatically repair existing contaminations. Users are advised to use the repair folder functionality, which is available from the context menu of email folders, which will erase incorrect subject assignments. External Reference: https://www.mozilla.org/en-US/security/advisories/mfsa2024-11/#CVE-2024-1936
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2024:1499 https://access.redhat.com/errata/RHSA-2024:1499
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:1493 https://access.redhat.com/errata/RHSA-2024:1493
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2024:1495 https://access.redhat.com/errata/RHSA-2024:1495
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2024:1498 https://access.redhat.com/errata/RHSA-2024:1498
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2024:1494 https://access.redhat.com/errata/RHSA-2024:1494
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2024:1492 https://access.redhat.com/errata/RHSA-2024:1492
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2024:1496 https://access.redhat.com/errata/RHSA-2024:1496
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2024:1497 https://access.redhat.com/errata/RHSA-2024:1497
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2024:1500 https://access.redhat.com/errata/RHSA-2024:1500