Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/thunderbird@10.0.11-1?arch=el5_8
purl pkg:rpm/redhat/thunderbird@10.0.11-1?arch=el5_8
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 4.5
Vulnerabilities affecting this package (15)
Vulnerability Summary Fixed by
VCID-1mfm-m3jn-9uf3
Aliases:
CVE-2012-5840
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-5v1h-mrzk-h7cv
Aliases:
CVE-2012-5839
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-661x-rm3w-qke1
Aliases:
CVE-2012-4215
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-74xj-6yst-nkdx
Aliases:
CVE-2012-5833
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-azav-xevg-a3f1
Aliases:
CVE-2012-4214
Security researcher Abhishek Arya (Inferno) of the Google Chrome Security Team discovered a series critically rated of use-after-free and buffer overflow issues using the Address Sanitizer tool in shipped software. These issues are potentially exploitable, allowing for remote code execution. We would also like to thank Abhishek for reporting five additional use-after-free, out of bounds read, and buffer overflow flaws introduced during Firefox development that were fixed before general release. In general these flaws cannot be exploited through email in the Thunderbird and SeaMonkey products because scripting is disabled, but are potentially a risk in browser or browser-like contexts in those products. There are no reported fixed by versions.
VCID-e6cv-9zf1-cycr
Aliases:
CVE-2012-4216
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-fwa9-k9ug-ffdg
Aliases:
CVE-2012-4201
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-gzac-u9ku-t3fj
Aliases:
CVE-2012-5842
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-p9t8-9m9m-rbg5
Aliases:
CVE-2012-5841
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-qxjr-9644-e7h1
Aliases:
CVE-2012-5830
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-rgkp-48gp-kfb8
Aliases:
CVE-2012-4209
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-upyy-ckwb-vybt
Aliases:
CVE-2012-5835
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-wbsm-vcr8-17ac
Aliases:
CVE-2012-4207
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-xget-uuf7-4kcy
Aliases:
CVE-2012-5829
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
VCID-y56t-avfk-skg2
Aliases:
CVE-2012-4202
Multiple vulnerabilities have been found in Mozilla Firefox, Thunderbird, SeaMonkey, NSS, GNU IceCat, and XULRunner, some of which may allow execution of arbitrary code or local privilege escalation. There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-01T14:53:44.203990+00:00 RedHat Importer Affected by VCID-upyy-ckwb-vybt https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5835.json 38.0.0
2026-04-01T14:53:44.107206+00:00 RedHat Importer Affected by VCID-74xj-6yst-nkdx https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5833.json 38.0.0
2026-04-01T14:53:44.010339+00:00 RedHat Importer Affected by VCID-qxjr-9644-e7h1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5830.json 38.0.0
2026-04-01T14:53:43.912449+00:00 RedHat Importer Affected by VCID-1mfm-m3jn-9uf3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5840.json 38.0.0
2026-04-01T14:53:43.808036+00:00 RedHat Importer Affected by VCID-5v1h-mrzk-h7cv https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5839.json 38.0.0
2026-04-01T14:53:43.706927+00:00 RedHat Importer Affected by VCID-xget-uuf7-4kcy https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5829.json 38.0.0
2026-04-01T14:53:43.609363+00:00 RedHat Importer Affected by VCID-e6cv-9zf1-cycr https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4216.json 38.0.0
2026-04-01T14:53:43.507393+00:00 RedHat Importer Affected by VCID-661x-rm3w-qke1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4215.json 38.0.0
2026-04-01T14:53:43.398032+00:00 RedHat Importer Affected by VCID-azav-xevg-a3f1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4214.json 38.0.0
2026-04-01T14:53:43.243292+00:00 RedHat Importer Affected by VCID-rgkp-48gp-kfb8 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4209.json 38.0.0
2026-04-01T14:53:43.135104+00:00 RedHat Importer Affected by VCID-wbsm-vcr8-17ac https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4207.json 38.0.0
2026-04-01T14:53:43.042951+00:00 RedHat Importer Affected by VCID-p9t8-9m9m-rbg5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5841.json 38.0.0
2026-04-01T14:53:42.865790+00:00 RedHat Importer Affected by VCID-fwa9-k9ug-ffdg https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4201.json 38.0.0
2026-04-01T14:53:42.776433+00:00 RedHat Importer Affected by VCID-y56t-avfk-skg2 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4202.json 38.0.0
2026-04-01T14:53:42.678066+00:00 RedHat Importer Affected by VCID-gzac-u9ku-t3fj https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5842.json 38.0.0