[SECURITY] [DLA 1678-1] thunderbird security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 1678-1] thunderbird security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Sat, 16 Feb 2019 19:59:58 +0100
Message-id: <[🔎] 9ea85e3b-a119-1b72-c553-364ae48ce56c@debian.org>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : thunderbird
Version        : 1:60.5.1-1~deb8u1
CVE ID         : CVE-2018-18356 CVE-2018-18500 CVE-2018-18501 CVE-2018-18505.
                 CVE-2018-18509 CVE-2019-5785

Multiple security issues have been found in the Thunderbird mail client,
which could lead to the execution of arbitrary code, denial of service
or spoofing of S/MIME signatures.

For Debian 8 "Jessie", these problems have been fixed in version
1:60.5.1-1~deb8u1.

We recommend that you upgrade your thunderbird packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAlxoXaoACgkQnUbEiOQ2
gwK/aRAAkOM9szWovA4AXiuDhqsKacxNNHPW/epAx9MZg9nhmSsd6H5n19rsasbK
K6pJmIa5UziDr1XwXSCPjjSI5c0sPrNbJtEYCQDA2PSIE3NDyPwKhoBKg4z9HSzG
+1QS/G4EcVYblA38WBv0hXlgI5Ldd7/5cs8sVHcqVRlaHIWhTYlTQxuKucIVddgZ
WglOnsoYjpBoPuUiCyNdbC7Fsqqi1GOgPn+DUus9NKIsxUtmrEGl1UVo+4SQaqsd
4DFjgr7TvpCWBr4tEEK84nwbTkjbe8AFZRhSrkLO9hNXAm3Qi0GxC1FA4KUlrFz+
aaMfEuyDb0xpMOvhMjqvPa3mgcSxQlz7819ypV2NumsXJcHm5SLIZXuahKfzyUgK
26czPYOmlIQM1JZu10MNX8L1pWmotcfhmt04Wv3M7Vgk9H0h7xVRv2i0HSEoTere
4abLn87I5YkXAU8kit+POu9DnUK6RErnoIxWK9xv8HR83PnVbfwavLmfuHzLEVdI
ZNlx8Xfe3ppSBLVA0szAF98ySDfmXBDnTc4zXj/W/4TgifQIMdtyf1+Enf8q/LBF
AASWxDiR5x4oxj/Zn2eDNJECP/kxXEyKeCVFkAN1gikf3rfqjPldZ7b0XaQRkt9y
SNoltAV6TzMQuiAj+8tkyiHObX+QsH0eW47Xq0doN2lcTTTRSPE=
=8CA8
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 1677-1] firefox-esr security update
Next by Date: [SECURITY] [DLA 1679-1] php5 security update
Previous by thread: [SECURITY] [DLA 1677-1] firefox-esr security update
Next by thread: [SECURITY] [DLA 1679-1] php5 security update
Index(es):
- Date
- Thread