[SECURITY] [DLA 1926-1] thunderbird security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Package : thunderbird
Version : 1:60.9.0-1~deb8u1
CVE ID : CVE-2019-11739 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743
CVE-2019-11744 CVE-2019-11746 CVE-2019-11752
Multiple security issues have been found in Thunderbird which could
potentially result in the execution of arbitrary code, cross-site
scripting, information disclosure and a covert content attack on S/MIME
encryption using a crafted multipart/alternative message.
For Debian 8 "Jessie", these problems have been fixed in version
1:60.9.0-1~deb8u1.
We recommend that you upgrade your thunderbird packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----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=FY6G
-----END PGP SIGNATURE-----
Reply to: