Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 4702-1] thunderbird security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 4702-1] thunderbird security update


Chronologisch Thread 
    < Chronologisch >      < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 4702-1] thunderbird security update
  • Date: Thu, 11 Jun 2020 17:45:50 +0000
  • List-archive: https://lists.debian.org/msgid-search/20200611174550.GA5946 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=8C068gKFLO8rXsn3gW7VSx5v0UtC1GDkuHIWe5tN/WI=; b=j7 Yeyfa7NLe6ricl1TcwNwMSkDvMvFRmsosrDL4xMLC1UtsbPsG9rdq5CCMQGiBGcjQ/9weUydZw3kU mU9+vYg3HxahoM0idpxVkrPtjxcTBzfUphPZhdKpWW4yrQIkzAfwA5x3s/5Fjg2/FIVoCUoqhpQmf Eokd7wR9zV0V3zMp8+EpKHQsqyJ1tj4lwydarSrFPO60gZZOlIKqZyATMXf/TLvUf2FpEn7W4su61 T28JSxfMMEYViqtDhk9akHvUZ3TKWwYymVBedi6aIQ8U6vb2owh5UOfhJTm6r5/piYpqTzP8uVoWT ytAWerrNElPYQgffsjritynOXbMrskKQ==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Thu, 11 Jun 2020 17:46:05 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <yy1Go1r9Z_E.A.St.d3m4eB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4702-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
June 11, 2020 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : thunderbird
CVE ID : CVE-2020-12410 CVE-2020-12406 CVE-2020-12405
CVE-2020-12399 CVE-2020-12398

Multiple security issues have been found in Thunderbird which could
result in the setup of a non-encrypted IMAP connection, denial of service
or potentially the execution of arbitrary code.

For the oldstable distribution (stretch), this problem has been fixed
in version 1:68.9.0-1~deb9u1.

For the stable distribution (buster), this problem has been fixed in
version 1:68.9.0-1~deb10u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=O/7L
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 4702-1] thunderbird security update, Moritz Muehlenhoff, 11.06.2020

Archiv bereitgestellt durch MHonArc 2.6.19.

Seitenanfang