Zum Inhalt springen.
Sympa Menü

it-securitynotifies - [IT-SecNots] [SECURITY] [DSA 4790-1] thunderbird security update

it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 4790-1] thunderbird security update


Chronologisch Thread 
    < Chronologisch >      < Thread >
  • From: Moritz Muehlenhoff <jmm AT debian.org>
  • To: debian-security-announce AT lists.debian.org
  • Subject: [IT-SecNots] [SECURITY] [DSA 4790-1] thunderbird security update
  • Date: Thu, 12 Nov 2020 21:40:43 +0000
  • List-archive: https://lists.debian.org/msgid-search/20201112214043.GA3037 AT seger.debian.org
  • List-id: <debian-security-announce.lists.debian.org>
  • List-url: <http://lists.debian.org/debian-security-announce/>
  • Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=Oucj8SdNTdekziQA6KjP1VGoN1/wyH++umUWKdkk+Eg=; b=Z5 vGcQUoxKLYNhiyIhWVcahId26Vzts9zQY19Hk2brHg/7hRYTOVIOhTjpurpHX+Kgdd/76GawR6gx+ aYjD/FCVInF04gMLJJ4Bn0LO9F2J0zZQQJyPDiI+eI7CG49TF4rpdes1PlaoqkiBCYApKyUnNlf6V jQgxyWGBTbEZc43exvqWrNDZEvirF2GcyEh86/fwV4Eo8SweoA7+69mSMnWBSQVDYswL5W/KPNQRn AbKiO5KMGU3HOwYFPtTUlk5a9K7iWjyK9uxSXf5MNfTb63N6FzCrmEOccbk3QSEQ08kWTPoecMpDG gWp030Od/4ntWdy96+dvVZoHu/VL3MkA==;
  • Old-return-path: <jmm AT seger.debian.org>
  • Priority: urgent
  • Resent-date: Thu, 12 Nov 2020 21:41:03 +0000 (UTC)
  • Resent-from: debian-security-announce AT lists.debian.org
  • Resent-message-id: <iqIe0fG-o0M.A.0VD.vvarfB@bendel>
  • Resent-sender: debian-security-announce-request AT lists.debian.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4790-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
November 12, 2020 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : thunderbird
CVE ID : CVE-2020-26950

A use-after-free was found in Thunderbird, which could potentially result
in the execution of arbitrary code.

For the stable distribution (buster), this problem has been fixed in
version 1:78.4.2-1~deb10u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=4Jb+
-----END PGP SIGNATURE-----


  • [IT-SecNots] [SECURITY] [DSA 4790-1] thunderbird security update, Moritz Muehlenhoff, 12.11.2020

Archiv bereitgestellt durch MHonArc 2.6.19.

Seitenanfang