RHSA-2025:21881: Important: SUSE Liberty Linux security update for thunderbird

Mon Nov 24 16:07:32 UTC 2025

# security update for thunderbird

Announcement ID: RHSA-2025:21881
Rating: Important

Cross-References:

  * CVE-2025-13012
  * CVE-2025-13013
  * CVE-2025-13014
  * CVE-2025-13015
  * CVE-2025-13016
  * CVE-2025-13017
  * CVE-2025-13018
  * CVE-2025-13019
  * CVE-2025-13020

CVSS scores:

  * CVE-2025-13012 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
  * CVE-2025-13013 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
  * CVE-2025-13014 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
  * CVE-2025-13015 ( SUSE ): 3.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:N/A:N
  * CVE-2025-13016 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
  * CVE-2025-13017 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
  * CVE-2025-13018 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
  * CVE-2025-13019 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
  * CVE-2025-13020 ( SUSE ): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Affected Products:

  * SUSE Liberty Linux 8

An update that solves 9 vulnerabilities can now be installed.

## Description:

This security update provides a functional equivalent of RHSA-2025:21881.
The original Red Hat(R) advisory is available from the Red Hat web site at
https://access.redhat.com/errata/RHSA-2025:21881.

## Package List:

  * SUSE Liberty Linux 8:
    * thunderbird 140.5.0-2.el8_10

## References:

  * https://www.suse.com/security/cve/CVE-2025-13012.html
  * https://www.suse.com/security/cve/CVE-2025-13013.html
  * https://www.suse.com/security/cve/CVE-2025-13014.html
  * https://www.suse.com/security/cve/CVE-2025-13015.html
  * https://www.suse.com/security/cve/CVE-2025-13016.html
  * https://www.suse.com/security/cve/CVE-2025-13017.html
  * https://www.suse.com/security/cve/CVE-2025-13018.html
  * https://www.suse.com/security/cve/CVE-2025-13019.html
  * https://www.suse.com/security/cve/CVE-2025-13020.html