it-securitynotifies AT lists.piratenpartei.de

Betreff: Sicherheitsankündigungen

Listenarchiv

[IT-SecNots] [SECURITY] [DSA 5221-1] thunderbird security update

From: Moritz Muehlenhoff <jmm AT debian.org>
To: debian-security-announce AT lists.debian.org
Subject: [IT-SecNots] [SECURITY] [DSA 5221-1] thunderbird security update
Date: Mon, 29 Aug 2022 20:31:19 +0000
Authentication-results: mail.piratenpartei.de; dkim=none; dmarc=none; spf=none (mail.piratenpartei.de: domain of "bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org" has no SPF policy when checking 2001:41b8:202:deb:216:36ff:fe40:4002) smtp.mailfrom="bounce-debian-security-announce=it-securitynotifies=lists.piratenpartei.de AT lists.debian.org"
List-archive: https://lists.debian.org/msgid-search/20220829203119.GA10924 AT seger.debian.org
List-id: <debian-security-announce.lists.debian.org>
List-url: <http://lists.debian.org/debian-security-announce/>
Old-dkim-signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=debian.org; s=smtpauto.seger; h=Content-Type:MIME-Version:Message-ID:Subject:To:From: Date:Reply-To:Cc:Content-Transfer-Encoding:Content-ID:Content-Description: In-Reply-To:References; bh=4HtKf9bkkOCXDoSbuj4oNmZNZTvTMaFKBFtIiD9zRrY=; b=Is YEA6BRKLdZeW49WUlhQ2CqTV4aXRWcuvK/4gzc3HPOf0WB8VfjYpnkFB/wyDOisc2KoXKK+G6zfmR Jr259h1MPyKy8kWqVmOP/rqphIuxhSmQUT0/xWmb5vn0QhwVh5bhApWYsFn/ZXZdWjve5m4MDImvH V/FtSmrTJCO/4wy6mMh7X0EywJG9J3Yxj5dGmlweegMWiZDmEn7kQ2W8nWnC7PukgNAvLBhQLGrw7 QhLkdoz03dQ/vDSNAy2K0ShdVsOuKlK7u1kVI4sYDeuEws0sdKzVmtLJfmt8/QcI0KL8oOXrYvTL2 OxkHUtUiGqnsLABmT4GmBW3OIPsCzReQ==;
Old-return-path: <jmm AT seger.debian.org>
Priority: urgent
Resent-date: Mon, 29 Aug 2022 20:31:46 +0000 (UTC)
Resent-from: debian-security-announce AT lists.debian.org
Resent-message-id: <wat-AwDaY5B.A.LyH.yISDjB@bendel>
Resent-sender: debian-security-announce-request AT lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5221-1 security AT debian.org
https://www.debian.org/security/ Moritz Muehlenhoff
August 29, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : thunderbird
CVE ID : CVE-2022-38472 CVE-2022-38473 CVE-2022-38478

Multiple security issues were discovered in Thunderbird, which could
result in denial of service or the execution of arbitrary code.

For the stable distribution (bullseye), these problems have been fixed in
version 1:91.13.0-1~deb11u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce AT lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=NQTT
-----END PGP SIGNATURE-----

[IT-SecNots] [SECURITY] [DSA 5221-1] thunderbird security update, Moritz Muehlenhoff, 29.08.2022

Archiv bereitgestellt durch MHonArc 2.6.24.