it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 4876-1] thunderbird security update

From: Moritz Muehlenhoff <jmm AT debian.org>
To: debian-security-announce AT lists.debian.org
Subject: [IT-SecNots] [SECURITY] [DSA 4876-1] thunderbird security update
Date: Thu, 25 Mar 2021 21:18:24 +0000
Authentication-results: mail02.piratenpartei.de; dkim=none; spf=none (mail02.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 82.195.75.100) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"; dmarc=none
List-archive: https://lists.debian.org/msgid-search/20210325211824.GA5797 AT seger.debian.org
List-id: <debian-security-announce.lists.debian.org>
List-url: <http://lists.debian.org/debian-security-announce/>
Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=s7LDn4KYpXsNcp6iD5adleY67+PApnV534gLC783t8E=; b=EB YHxDVn/JigWmZzZ5mfLQqdPdqvuqzs7DtoI87u+cwLaS5eaYd/1aVgc95CkC9lbrz2SpbG0ppRAaz iE/H1g31/3rj+C32d5xXuT2JcGzcwWuHM5zLDTukjkrH59k5mTElltBy58MdOZ9kYAS/29AVIhVnt lWFPMXoltkjNPXVINKrmaeP+wgJ2GDndV2j/W2IflsD82ya5gwVmRfFXEDnv0iyuXMCJ87vNJAuGf P6yd2wK16xWsldEiEGeoh2nLWgKid8pSsZtHbCjjDoh38scQ4bNNFS5tuz6DYEF4PwHyqG9YUmRrk TuWdL/8a8+5eshAuGo5LEcbhfkWvaf7w==;
Old-return-path: <jmm AT seger.debian.org>
Priority: urgent
Resent-date: Thu, 25 Mar 2021 21:18:42 +0000 (UTC)
Resent-from: debian-security-announce AT lists.debian.org
Resent-message-id: <YGNX8qP8i2H.A.AKF.y4PXgB@bendel>
Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4876-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
March 25, 2021 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : thunderbird
CVE ID : CVE-2021-23981 CVE-2021-23982 CVE-2021-23984 CVE-2021-23987

Multiple security issues were discovered in Thunderbird, which could
result in the execution of arbitrary code or information disclosure.

For the stable distribution (buster), these problems have been fixed in
version 1:78.9.0-1~deb10u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=vdE4
-----END PGP SIGNATURE-----

[IT-SecNots] [SECURITY] [DSA 4876-1] thunderbird security update, Moritz Muehlenhoff, 25.03.2021

Archiv bereitgestellt durch MHonArc 2.6.24.