An update for thunderbird is now available for openEuler-24.03-LTS-SP3 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2026-1468 Final 1.0 1.0 2026-02-28 Initial 2026-02-28 2026-02-28 openEuler SA Tool V1.0 2026-02-28 thunderbird security update An update for thunderbird is now available for openEuler-24.03-LTS-SP3 Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fix(es): When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text section of an email that was formatted and styled with HTML and CSS, then the decrypted contents were rendered in a context in which the CSS styles from the outer messages were active. If the user had additionally allowed loading of the remote content referenced by the outer email message, and the email was crafted by the sender using a combination of CSS rules and fonts and animations, then it was possible to extract the secret contents of the email. This vulnerability affects Thunderbird < 147.0.1 and Thunderbird < 140.7.1.(CVE-2026-0818) Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2.(CVE-2026-2447) An update for thunderbird is now available for openEuler-24.03-LTS-SP3. openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. High thunderbird https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1468 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-0818 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2026-2447 https://nvd.nist.gov/vuln/detail/CVE-2026-0818 https://nvd.nist.gov/vuln/detail/CVE-2026-2447 openEuler-24.03-LTS-SP3 thunderbird-140.7.2-1.oe2403sp3.aarch64.rpm thunderbird-debuginfo-140.7.2-1.oe2403sp3.aarch64.rpm thunderbird-debugsource-140.7.2-1.oe2403sp3.aarch64.rpm thunderbird-librnp-rnp-140.7.2-1.oe2403sp3.aarch64.rpm thunderbird-wayland-140.7.2-1.oe2403sp3.aarch64.rpm thunderbird-140.7.2-1.oe2403sp3.src.rpm thunderbird-140.7.2-1.oe2403sp3.x86_64.rpm thunderbird-debuginfo-140.7.2-1.oe2403sp3.x86_64.rpm thunderbird-debugsource-140.7.2-1.oe2403sp3.x86_64.rpm thunderbird-librnp-rnp-140.7.2-1.oe2403sp3.x86_64.rpm thunderbird-wayland-140.7.2-1.oe2403sp3.x86_64.rpm When a user explicitly requested Thunderbird to decrypt an inline OpenPGP message that was embedded in a text section of an email that was formatted and styled with HTML and CSS, then the decrypted contents were rendered in a context in which the CSS styles from the outer messages were active. If the user had additionally allowed loading of the remote content referenced by the outer email message, and the email was crafted by the sender using a combination of CSS rules and fonts and animations, then it was possible to extract the secret contents of the email. This vulnerability affects Thunderbird < 147.0.1 and Thunderbird < 140.7.1. 2026-02-28 CVE-2026-0818 openEuler-24.03-LTS-SP3 Medium 4.3 AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N thunderbird security update 2026-02-28 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1468 Heap buffer overflow in libvpx. This vulnerability affects Firefox < 147.0.4, Firefox ESR < 140.7.1, Firefox ESR < 115.32.1, Thunderbird < 140.7.2, and Thunderbird < 147.0.2. 2026-02-28 CVE-2026-2447 openEuler-24.03-LTS-SP3 High 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H thunderbird security update 2026-02-28 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2026-1468