Fedora Account System
Red Hat Associate
Red Hat Customer
The Thunderbird Address Book URI fields contained unsanitized links. This could be used by an attacker to create and export an address book containing a malicious payload in a field. For example, in the “Other” field of the Instant Messaging section. If another user imported the address book, clicking on the link could result in opening a web page inside Thunderbird, and that page could execute (unprivileged) JavaScript. This vulnerability affects Thunderbird < 128.7.
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2025:1184 https://access.redhat.com/errata/RHSA-2025:1184
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2025:1292 https://access.redhat.com/errata/RHSA-2025:1292
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions Via RHSA-2025:1319 https://access.redhat.com/errata/RHSA-2025:1319
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.2 Extended Update Support Via RHSA-2025:1317 https://access.redhat.com/errata/RHSA-2025:1317
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.4 Extended Update Support Via RHSA-2025:1318 https://access.redhat.com/errata/RHSA-2025:1318
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2025:1339 https://access.redhat.com/errata/RHSA-2025:1339
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.8 Extended Update Support Via RHSA-2025:1340 https://access.redhat.com/errata/RHSA-2025:1340
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions Red Hat Enterprise Linux 8.6 Telecommunications Update Service Via RHSA-2025:1341 https://access.redhat.com/errata/RHSA-2025:1341
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Via RHSA-2025:1348 https://access.redhat.com/errata/RHSA-2025:1348