{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright © Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated thunderbird package that fixes multiple security issues is now\navailable for Red Hat Enterprise Linux 5, 6, and 7.\n\nRed Hat Product Security has rated this update as having Important security\nimpact. Common Vulnerability Scoring System (CVSS) base scores, which give\ndetailed severity ratings, are available for each vulnerability from the\nCVE links in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Mozilla Thunderbird is a standalone mail and newsgroup client.\n\nSeveral flaws were found in the processing of malformed web content. A web\npage containing malicious content could cause Thunderbird to crash or,\npotentially, execute arbitrary code with the privileges of the user running\nThunderbird. (CVE-2015-4513, CVE-2015-7189, CVE-2015-7197, CVE-2015-7198,\nCVE-2015-7199, CVE-2015-7200)\n\nA same-origin policy bypass flaw was found in the way Thunderbird handled\ncertain cross-origin resource sharing (CORS) requests. A web page\ncontaining malicious content could cause Thunderbird to disclose sensitive\ninformation. (CVE-2015-7193)\n\nNote: All of the above issues cannot be exploited by a specially crafted\nHTML mail message because JavaScript is disabled by default for mail\nmessages. However, they could be exploited in other ways in Thunderbird\n(for example, by viewing the full remote content of an RSS feed).\n\nRed Hat would like to thank the Mozilla project for reporting this issue.\nUpstream acknowledges Christian Holler, David Major, Jesse Ruderman, Tyson\nSmith, Boris Zbarsky, Randell Jesup, Olli Pettay, Karl Tomlinson, Jeff\nWalden, Gary Kwong, Looben Yang, Shinto K Anto, Ronald Crane, and Ehsan\nAkhgari as the original reporters of these issues.\n\nFor technical details regarding these flaws, refer to the Mozilla security\nadvisories for Thunderbird 38.4.0. You can find a link to the Mozilla\nadvisories in the References section of this erratum.\n\nAll Thunderbird users should upgrade to this updated package, which\ncontains Thunderbird version 38.4.0, which corrects these issues. After\ninstalling the update, Thunderbird must be restarted for the changes to\ntake effect.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2015:2519",
        "url": "https://access.redhat.com/errata/RHSA-2015:2519"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird38.4",
        "url": "https://www.mozilla.org/en-US/security/known-vulnerabilities/thunderbird/#thunderbird38.4"
      },
      {
        "category": "external",
        "summary": "1277332",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277332"
      },
      {
        "category": "external",
        "summary": "1277344",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277344"
      },
      {
        "category": "external",
        "summary": "1277346",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277346"
      },
      {
        "category": "external",
        "summary": "1277350",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277350"
      },
      {
        "category": "external",
        "summary": "1277351",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277351"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_2519.json"
      }
    ],
    "title": "Red Hat Security Advisory: thunderbird security update",
    "tracking": {
      "current_release_date": "2026-06-25T10:44:47+00:00",
      "generator": {
        "date": "2026-06-25T10:44:47+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "5.1.0"
        }
      },
      "id": "RHSA-2015:2519",
      "initial_release_date": "2015-11-26T13:41:00+00:00",
      "revision_history": [
        {
          "date": "2015-11-26T13:41:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2015-11-26T13:41:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-06-25T10:44:47+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
                "product": {
                  "name": "Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
                  "product_id": "5Server-DPAS-5.11.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:rhel_productivity:5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop (v. 5 client)",
                  "product_id": "5Client-5.11.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:5::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Desktop (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Desktop (v. 6)",
                  "product_id": "6Client-6.7.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional (v. 6)",
                  "product_id": "6Server-optional-6.7.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation (v. 6)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation (v. 6)",
                  "product_id": "6Workstation-6.7.z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Client (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Client (v. 7)",
                  "product_id": "7Client-7.2.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::client"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Server Optional (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Server Optional (v. 7)",
                  "product_id": "7Server-optional-7.2.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::server"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                "product": {
                  "name": "Red Hat Enterprise Linux Workstation (v. 7)",
                  "product_id": "7Workstation-7.2.Z",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:7::workstation"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
                "product": {
                  "name": "thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
                  "product_id": "thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@38.4.0-1.el5_11?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el5_11.i386",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el5_11.i386",
                  "product_id": "thunderbird-0:38.4.0-1.el5_11.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el5_11?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
                "product": {
                  "name": "thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
                  "product_id": "thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@38.4.0-1.el5_11?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el5_11.x86_64",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el5_11.x86_64",
                  "product_id": "thunderbird-0:38.4.0-1.el5_11.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el5_11?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
                "product": {
                  "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
                  "product_id": "thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@38.4.0-1.el6_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el6_7.x86_64",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el6_7.x86_64",
                  "product_id": "thunderbird-0:38.4.0-1.el6_7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el6_7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el7_2.x86_64",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el7_2.x86_64",
                  "product_id": "thunderbird-0:38.4.0-1.el7_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el7_2?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
                "product": {
                  "name": "thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
                  "product_id": "thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@38.4.0-1.el7_2?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el5_11.src",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el5_11.src",
                  "product_id": "thunderbird-0:38.4.0-1.el5_11.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el5_11?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el6_7.src",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el6_7.src",
                  "product_id": "thunderbird-0:38.4.0-1.el6_7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el6_7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el7_2.src",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el7_2.src",
                  "product_id": "thunderbird-0:38.4.0-1.el7_2.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el7_2?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
                "product": {
                  "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
                  "product_id": "thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@38.4.0-1.el6_7?arch=i686"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el6_7.i686",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el6_7.i686",
                  "product_id": "thunderbird-0:38.4.0-1.el6_7.i686",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el6_7?arch=i686"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i686"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el6_7.s390x",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el6_7.s390x",
                  "product_id": "thunderbird-0:38.4.0-1.el6_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el6_7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
                "product": {
                  "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
                  "product_id": "thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@38.4.0-1.el6_7?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
                "product": {
                  "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
                  "product_id": "thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@38.4.0-1.el6_7?arch=ppc64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el6_7.ppc64",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el6_7.ppc64",
                  "product_id": "thunderbird-0:38.4.0-1.el6_7.ppc64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el6_7?arch=ppc64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "thunderbird-0:38.4.0-1.el7_2.ppc64le",
                "product": {
                  "name": "thunderbird-0:38.4.0-1.el7_2.ppc64le",
                  "product_id": "thunderbird-0:38.4.0-1.el7_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird@38.4.0-1.el7_2?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
                "product": {
                  "name": "thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
                  "product_id": "thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/thunderbird-debuginfo@38.4.0-1.el7_2?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el5_11.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el5_11.i386",
        "relates_to_product_reference": "5Client-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el5_11.src as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el5_11.src",
        "relates_to_product_reference": "5Client-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el5_11.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el5_11.x86_64",
        "relates_to_product_reference": "5Client-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el5_11.i386 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
        "relates_to_product_reference": "5Client-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 5 client)",
          "product_id": "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
        "relates_to_product_reference": "5Client-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el5_11.i386 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
          "product_id": "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el5_11.i386",
        "relates_to_product_reference": "5Server-DPAS-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el5_11.src as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
          "product_id": "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el5_11.src",
        "relates_to_product_reference": "5Server-DPAS-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el5_11.x86_64 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
          "product_id": "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el5_11.x86_64",
        "relates_to_product_reference": "5Server-DPAS-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el5_11.i386 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
          "product_id": "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
        "relates_to_product_reference": "5Server-DPAS-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64 as a component of Red Hat Enterprise Linux Optional Productivity Applications (v. 5 server)",
          "product_id": "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
        "relates_to_product_reference": "5Server-DPAS-5.11.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.i686",
        "relates_to_product_reference": "6Client-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.src",
        "relates_to_product_reference": "6Client-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.x86_64",
        "relates_to_product_reference": "6Client-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.i686 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
        "relates_to_product_reference": "6Client-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64 as a component of Red Hat Enterprise Linux Desktop (v. 6)",
          "product_id": "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
        "relates_to_product_reference": "6Client-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.i686",
        "relates_to_product_reference": "6Server-optional-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.ppc64",
        "relates_to_product_reference": "6Server-optional-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.s390x",
        "relates_to_product_reference": "6Server-optional-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.src as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.src",
        "relates_to_product_reference": "6Server-optional-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.x86_64",
        "relates_to_product_reference": "6Server-optional-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
        "relates_to_product_reference": "6Server-optional-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
        "relates_to_product_reference": "6Server-optional-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
        "relates_to_product_reference": "6Server-optional-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 6)",
          "product_id": "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
        "relates_to_product_reference": "6Server-optional-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.i686",
        "relates_to_product_reference": "6Workstation-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.src",
        "relates_to_product_reference": "6Workstation-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el6_7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el6_7.x86_64",
        "relates_to_product_reference": "6Workstation-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.i686 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
        "relates_to_product_reference": "6Workstation-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 6)",
          "product_id": "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
        "relates_to_product_reference": "6Workstation-6.7.z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el7_2.src as a component of Red Hat Enterprise Linux Client (v. 7)",
          "product_id": "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el7_2.src",
        "relates_to_product_reference": "7Client-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el7_2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
          "product_id": "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el7_2.x86_64",
        "relates_to_product_reference": "7Client-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)",
          "product_id": "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
        "relates_to_product_reference": "7Client-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el7_2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el7_2.ppc64le",
        "relates_to_product_reference": "7Server-optional-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el7_2.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el7_2.src",
        "relates_to_product_reference": "7Server-optional-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el7_2.x86_64",
        "relates_to_product_reference": "7Server-optional-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
        "relates_to_product_reference": "7Server-optional-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)",
          "product_id": "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
        "relates_to_product_reference": "7Server-optional-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el7_2.src as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el7_2.src",
        "relates_to_product_reference": "7Workstation-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-0:38.4.0-1.el7_2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64"
        },
        "product_reference": "thunderbird-0:38.4.0-1.el7_2.x86_64",
        "relates_to_product_reference": "7Workstation-7.2.Z"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)",
          "product_id": "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        },
        "product_reference": "thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
        "relates_to_product_reference": "7Workstation-7.2.Z"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Mozilla project"
          ]
        }
      ],
      "cve": "CVE-2015-4513",
      "discovery_date": "2015-11-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1277332"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla: Miscellaneous memory safety hazards (rv:38.4) (MFSA 2015-116)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-4513"
        },
        {
          "category": "external",
          "summary": "RHBZ#1277332",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277332"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-4513",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-4513"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-4513",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-4513"
        },
        {
          "category": "external",
          "summary": "https://www.mozilla.org/security/announce/2015/mfsa2015-116.html",
          "url": "https://www.mozilla.org/security/announce/2015/mfsa2015-116.html"
        }
      ],
      "release_date": "2015-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-11-26T13:41:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:2519"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Mozilla: Miscellaneous memory safety hazards (rv:38.4) (MFSA 2015-116)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Mozilla project"
          ]
        },
        {
          "names": [
            "Looben Yang"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2015-7189",
      "cwe": {
        "id": "CWE-119",
        "name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
      },
      "discovery_date": "2015-11-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1277344"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Race condition in the JPEGEncoder function in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via vectors involving a CANVAS element and crafted JavaScript code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla: Buffer overflow during image interactions in canvas (MFSA 2015-123)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-7189"
        },
        {
          "category": "external",
          "summary": "RHBZ#1277344",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277344"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-7189",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-7189"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-7189",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7189"
        },
        {
          "category": "external",
          "summary": "https://www.mozilla.org/security/announce/2015/mfsa2015-123.html",
          "url": "https://www.mozilla.org/security/announce/2015/mfsa2015-123.html"
        }
      ],
      "release_date": "2015-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-11-26T13:41:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:2519"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "Mozilla: Buffer overflow during image interactions in canvas (MFSA 2015-123)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Mozilla project"
          ]
        },
        {
          "names": [
            "Shinto K Anto"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2015-7193",
      "discovery_date": "2015-11-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1277346"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 improperly follow the CORS cross-origin request algorithm for the POST method in situations involving an unspecified Content-Type header manipulation, which allows remote attackers to bypass the Same Origin Policy by leveraging the lack of a preflight-request step.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla: CORS preflight is bypassed when non-standard Content-Type headers are received (MFSA 2015-127)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-7193"
        },
        {
          "category": "external",
          "summary": "RHBZ#1277346",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277346"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-7193",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-7193"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-7193",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7193"
        },
        {
          "category": "external",
          "summary": "https://www.mozilla.org/security/announce/2015/mfsa2015-127.html",
          "url": "https://www.mozilla.org/security/announce/2015/mfsa2015-127.html"
        }
      ],
      "release_date": "2015-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-11-26T13:41:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:2519"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "HIGH",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Mozilla: CORS preflight is bypassed when non-standard Content-Type headers are received (MFSA 2015-127)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Mozilla project"
          ]
        },
        {
          "names": [
            "Ehsan Akhgari"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2015-7197",
      "discovery_date": "2015-11-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1277351"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 improperly control the ability of a web worker to create a WebSocket object, which allows remote attackers to bypass intended mixed-content restrictions via crafted JavaScript code.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla: Mixed content WebSocket policy bypass through workers (MFSA 2015-132)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-7197"
        },
        {
          "category": "external",
          "summary": "RHBZ#1277351",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277351"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-7197",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-7197"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-7197",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7197"
        },
        {
          "category": "external",
          "summary": "https://www.mozilla.org/security/announce/2015/mfsa2015-132.html",
          "url": "https://www.mozilla.org/security/announce/2015/mfsa2015-132.html"
        }
      ],
      "release_date": "2015-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-11-26T13:41:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:2519"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "products": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "Mozilla: Mixed content WebSocket policy bypass through workers (MFSA 2015-132)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Mozilla project"
          ]
        },
        {
          "names": [
            "Ronald Crane"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2015-7198",
      "discovery_date": "2015-11-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1277350"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Buffer overflow in the rx::TextureStorage11 class in ANGLE, as used in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via crafted texture data.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla: Vulnerabilities found through code inspection (MFSA 2015-131)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-7198"
        },
        {
          "category": "external",
          "summary": "RHBZ#1277350",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277350"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-7198",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-7198"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-7198",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7198"
        },
        {
          "category": "external",
          "summary": "https://www.mozilla.org/security/announce/2015/mfsa2015-131.html",
          "url": "https://www.mozilla.org/security/announce/2015/mfsa2015-131.html"
        }
      ],
      "release_date": "2015-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-11-26T13:41:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:2519"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "Mozilla: Vulnerabilities found through code inspection (MFSA 2015-131)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Mozilla project"
          ]
        },
        {
          "names": [
            "Ronald Crane"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2015-7199",
      "discovery_date": "2015-11-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1277350"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The (1) AddWeightedPathSegLists and (2) SVGPathSegListSMILType::Interpolate functions in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 lack status checking, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted SVG document.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla: Vulnerabilities found through code inspection (MFSA 2015-131)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-7199"
        },
        {
          "category": "external",
          "summary": "RHBZ#1277350",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277350"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-7199",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-7199"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-7199",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7199"
        },
        {
          "category": "external",
          "summary": "https://www.mozilla.org/security/announce/2015/mfsa2015-131.html",
          "url": "https://www.mozilla.org/security/announce/2015/mfsa2015-131.html"
        }
      ],
      "release_date": "2015-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-11-26T13:41:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:2519"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "Mozilla: Vulnerabilities found through code inspection (MFSA 2015-131)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Mozilla project"
          ]
        },
        {
          "names": [
            "Ronald Crane"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2015-7200",
      "discovery_date": "2015-11-03T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1277350"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "The CryptoKey interface implementation in Mozilla Firefox before 42.0 and Firefox ESR 38.x before 38.4 lacks status checking, which allows attackers to have an unspecified impact via vectors related to a cryptographic key.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Mozilla: Vulnerabilities found through code inspection (MFSA 2015-131)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
          "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
          "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
          "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
          "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
          "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
          "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
          "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
          "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2015-7200"
        },
        {
          "category": "external",
          "summary": "RHBZ#1277350",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1277350"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2015-7200",
          "url": "https://www.cve.org/CVERecord?id=CVE-2015-7200"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-7200",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-7200"
        },
        {
          "category": "external",
          "summary": "https://www.mozilla.org/security/announce/2015/mfsa2015-131.html",
          "url": "https://www.mozilla.org/security/announce/2015/mfsa2015-131.html"
        }
      ],
      "release_date": "2015-11-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2015-11-26T13:41:00+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2015:2519"
        }
      ],
      "scores": [
        {
          "cvss_v2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "products": [
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Client-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Client-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.src",
            "5Server-DPAS-5.11.Z:thunderbird-0:38.4.0-1.el5_11.x86_64",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.i386",
            "5Server-DPAS-5.11.Z:thunderbird-debuginfo-0:38.4.0-1.el5_11.x86_64",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Client-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Client-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Server-optional-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.ppc64",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.s390x",
            "6Server-optional-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.src",
            "6Workstation-6.7.z:thunderbird-0:38.4.0-1.el6_7.x86_64",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.i686",
            "6Workstation-6.7.z:thunderbird-debuginfo-0:38.4.0-1.el6_7.x86_64",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Client-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Client-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Server-optional-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.ppc64le",
            "7Server-optional-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.src",
            "7Workstation-7.2.Z:thunderbird-0:38.4.0-1.el7_2.x86_64",
            "7Workstation-7.2.Z:thunderbird-debuginfo-0:38.4.0-1.el7_2.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Critical"
        }
      ],
      "title": "Mozilla: Vulnerabilities found through code inspection (MFSA 2015-131)"
    }
  ]
}