Red Hat Security Advisory: thunderbird security update
Multiple security vulnerabilities affecting Mozilla Thunderbird have been addressed in a Red Hat Enterprise Linux 8 update. These include privilege escalation in the Firefox Updater, unsafe attribute access during XPath parsing, process isolation bypass via "javascript:" URI links in cross-origin frames, and several memory safety bugs. The update fixes these issues in Thunderbird 128.10 and related Firefox versions. Red Hat rates the security impact as Important and provides updated packages for various architectures. No known exploits in the wild have been reported at this time.
AI Analysis
Technical Summary
This advisory covers five distinct vulnerabilities affecting Mozilla Thunderbird in Red Hat Enterprise Linux 8. The issues include a privilege escalation vulnerability in the Firefox Updater component (CVE-2025-2817), unsafe attribute access during XPath parsing (CVE-2025-4087), a process isolation bypass via "javascript:" URI links in cross-origin frames (CVE-2025-4083), and multiple memory safety bugs fixed in Thunderbird 128.10 and Firefox 138/ESR 128.10 (CVE-2025-4091 and CVE-2025-4093). Red Hat has issued updated Thunderbird packages (version 128.10.0-1.el8_10) for multiple architectures and extended life cycle releases to remediate these vulnerabilities.
Potential Impact
The vulnerabilities could allow privilege escalation, unsafe attribute access potentially leading to unauthorized data exposure, bypass of process isolation which may weaken security boundaries, and memory safety issues that could lead to crashes or code execution. These issues collectively pose a significant risk to the confidentiality, integrity, and availability of the affected systems running Thunderbird on Red Hat Enterprise Linux 8.
Mitigation Recommendations
Red Hat has released updated Thunderbird packages (version 128.10.0-1.el8_10) that address all identified vulnerabilities. Users should apply the security update promptly by following the instructions in the Red Hat advisory (https://access.redhat.com/articles/11258). No additional mitigations are indicated by the vendor advisory beyond applying the official update.
Red Hat Security Advisory: thunderbird security update
Description
Multiple security vulnerabilities affecting Mozilla Thunderbird have been addressed in a Red Hat Enterprise Linux 8 update. These include privilege escalation in the Firefox Updater, unsafe attribute access during XPath parsing, process isolation bypass via "javascript:" URI links in cross-origin frames, and several memory safety bugs. The update fixes these issues in Thunderbird 128.10 and related Firefox versions. Red Hat rates the security impact as Important and provides updated packages for various architectures. No known exploits in the wild have been reported at this time.
Affected software
pkg:rpm/redhat/thunderbirdRun on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers five distinct vulnerabilities affecting Mozilla Thunderbird in Red Hat Enterprise Linux 8. The issues include a privilege escalation vulnerability in the Firefox Updater component (CVE-2025-2817), unsafe attribute access during XPath parsing (CVE-2025-4087), a process isolation bypass via "javascript:" URI links in cross-origin frames (CVE-2025-4083), and multiple memory safety bugs fixed in Thunderbird 128.10 and Firefox 138/ESR 128.10 (CVE-2025-4091 and CVE-2025-4093). Red Hat has issued updated Thunderbird packages (version 128.10.0-1.el8_10) for multiple architectures and extended life cycle releases to remediate these vulnerabilities.
Potential Impact
The vulnerabilities could allow privilege escalation, unsafe attribute access potentially leading to unauthorized data exposure, bypass of process isolation which may weaken security boundaries, and memory safety issues that could lead to crashes or code execution. These issues collectively pose a significant risk to the confidentiality, integrity, and availability of the affected systems running Thunderbird on Red Hat Enterprise Linux 8.
Mitigation Recommendations
Red Hat has released updated Thunderbird packages (version 128.10.0-1.el8_10) that address all identified vulnerabilities. Users should apply the security update promptly by following the instructions in the Red Hat advisory (https://access.redhat.com/articles/11258). No additional mitigations are indicated by the vendor advisory beyond applying the official update.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2025:4797
- Cve Count
- 5
- Additional Cves
- ["CVE-2025-4083","CVE-2025-4087","CVE-2025-4091","CVE-2025-4093"]
- Cvss Version
- null
Threat ID: 6a4049e927e9c79719835d68
Added to database: 06/27/2026, 22:08:41 UTC
Last enriched: 06/27/2026, 22:39:20 UTC
Last updated: 06/28/2026, 00:51:09 UTC
Views: 3
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.