Download Firefox

Firefox is no longer supported on Windows 8.1 and below.

Please download Firefox ESR (Extended Support Release) to use Firefox.

Download Firefox ESR 64-bit

Download Firefox ESR 32-bit

Download a different build

Firefox is no longer supported on macOS 10.14 and below.

Please download Firefox ESR (Extended Support Release) to use Firefox.

Download Firefox ESR
Firefox Privacy Notice
Get Mozilla VPN

Mozilla Foundation Security Advisory 2023-04

Security Vulnerabilities fixed in Thunderbird 102.7.1

Announced
January 23, 2023
Impact
high
Products
Thunderbird
Fixed in
  • Thunderbird 102.7.1

#CVE-2023-0430: Revocation status of S/Mime signature certificates was not checked

Reporter
Paul Menzel
Impact
high
Description

Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by this bug.

References