{"id":"RHSA-2026:6188","summary":"Red Hat Security Advisory: thunderbird security update","modified":"2026-04-08T10:08:17Z","published":"2026-03-31T10:12:15Z","upstream":["CVE-2026-3889","CVE-2026-4371","CVE-2026-4684","CVE-2026-4685","CVE-2026-4686","CVE-2026-4687","CVE-2026-4688","CVE-2026-4689","CVE-2026-4690","CVE-2026-4691","CVE-2026-4692","CVE-2026-4693","CVE-2026-4694","CVE-2026-4695","CVE-2026-4696","CVE-2026-4697","CVE-2026-4698","CVE-2026-4699","CVE-2026-4700","CVE-2026-4701","CVE-2026-4702","CVE-2026-4704","CVE-2026-4705","CVE-2026-4706","CVE-2026-4707","CVE-2026-4708","CVE-2026-4709","CVE-2026-4710","CVE-2026-4711","CVE-2026-4712","CVE-2026-4713","CVE-2026-4714","CVE-2026-4715","CVE-2026-4716","CVE-2026-4717","CVE-2026-4718","CVE-2026-4719","CVE-2026-4720","CVE-2026-4721"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2026:6188"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450710"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450711"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450712"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450713"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450714"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450715"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450718"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450719"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450720"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450721"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450722"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450723"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450724"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450725"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450726"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450727"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450728"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450729"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450730"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450732"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450733"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450734"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450735"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450738"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450739"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450740"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450741"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450742"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450744"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450746"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450747"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450748"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450751"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450752"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450755"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450756"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2450757"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451001"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2451006"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_6188.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-3889"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-3889"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-3889"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-3889"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4371"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4371"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4371"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4371"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4684"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4684"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4684"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4684"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4684"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4685"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4685"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4685"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4685"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4685"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4686"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4686"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4686"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4686"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4686"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4687"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4687"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4687"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4687"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4687"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4688"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4688"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4688"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4688"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4688"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4689"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4689"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4689"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4689"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4689"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4690"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4690"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4690"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4690"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4690"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4691"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4691"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4691"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4691"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4691"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4692"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4692"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4692"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4692"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4692"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4693"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4693"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4693"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4693"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4693"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4694"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4694"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4694"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4694"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4694"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4695"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4695"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4695"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4695"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4695"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4696"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4696"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4696"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4696"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4696"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4697"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4697"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4697"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4697"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4697"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4698"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4698"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4698"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4698"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4698"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4699"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4699"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4699"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4699"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4699"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4700"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4700"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4700"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4700"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4700"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4701"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4701"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4701"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4701"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4701"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4702"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4702"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4702"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4702"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4702"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4704"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4704"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4704"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4704"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4704"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4705"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4705"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4705"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4705"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4705"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4706"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4706"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4706"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4706"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4706"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4707"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4707"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4707"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4707"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4707"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4708"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4708"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4708"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4708"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4708"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4709"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4709"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4709"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4709"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4709"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4710"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4710"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4710"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4710"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4710"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4711"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4711"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4711"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4711"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4711"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4712"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4712"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4712"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4712"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4712"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4713"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4713"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4713"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4713"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4713"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4714"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4714"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4714"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4714"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4714"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4715"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4715"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4715"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4715"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4715"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4716"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4716"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4716"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4716"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4716"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4717"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4717"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4717"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4717"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4717"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4718"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4718"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4718"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4718"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4718"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4719"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4719"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4719"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4719"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4719"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4720"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4720"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4720"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4720"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4720"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2026-4721"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2026-4721"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4721"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-22/#CVE-2026-4721"},{"type":"ARTICLE","url":"https://www.mozilla.org/security/advisories/mfsa2026-24/#CVE-2026-4721"}],"affected":[{"package":{"name":"thunderbird","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/thunderbird"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:140.9.0-1.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6188.json"}},{"package":{"name":"thunderbird-debuginfo","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/thunderbird-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:140.9.0-1.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6188.json"}},{"package":{"name":"thunderbird-debugsource","ecosystem":"Red Hat:enterprise_linux:9::appstream","purl":"pkg:rpm/redhat/thunderbird-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:140.9.0-1.el9_7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2026:6188.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H"}]}