[SECURITY] [DLA 2464-1] thunderbird security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 2464-1] thunderbird security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Mon, 23 Nov 2020 10:55:28 +0100 (CET)
Message-id: <[🔎] 20201123095528.68AF92A0F6F@andromeda>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2464-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
November 23, 2020                             https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : thunderbird
Version        : 1:78.5.0-1~deb9u1
CVE ID         : CVE-2020-16012 CVE-2020-26951 CVE-2020-26953 CVE-2020-26956 
                 CVE-2020-26958 CVE-2020-26959 CVE-2020-26960 CVE-2020-26961 
                 CVE-2020-26965 CVE-2020-26968

Multiple security issues have been found in Thunderbird, which may lead
to the execution of arbitrary code or denial of service.

For Debian 9 stretch, these problems have been fixed in version
1:78.5.0-1~deb9u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAl+7hwwACgkQnUbEiOQ2
gwItixAArrk7sAPtGAaSaY92gmuXaibWLJf7HRwEeIWPzAEzHwXp+j+Zq2KjukIS
oxy57HQaQA+bq0yeH7RWJUjmxc8F+6Y0gX+UCsh+PNGXswDi0JwR1Py4H+X534Zc
Ja7xG0doV/hQDTCC+hjHw+f6veS0FizRmA/brQXvum6sWHvxG7jr+7rC1wvOcbLC
GcL58TPovd5Ip/tZfd5I3APyjepTm8YeS0MmXTV/X3oGW4xV0+70i6n0pFi5KQzv
abPBVu1dGWhL+xNI/F53FxpFpRIo0GMUylGceEQgrGFmrXQhRmF9/4ORBy23Yn8W
SEKg8bIDsHX6sl6uVW/vZJOzWuz4rjbgdMLdbKgPVW6rF4Wy9OC7qovWVSoq9DOZ
hCuJ5t79XBhZSFPMQJsH7UOVUACnT6clk2gHXHgfltfQPTj+tWwZg3xERe6OOvfT
jtnC/7qglvpOa9JM0M6Pwa/Odxjm0ooUUj3vv4SHeuqz9/Wm2tcc+TyA9BsxKJ0l
AlY3hHBEU0eoBwJpi6sgWHiuKQ3JvRFIbBFZVkJCl6vSYAljuZEEfHNK7fQoU16F
CYBM4uCti4d9VNaPZCnZkmwRZI5LY8temuO/Hai62WHCf6Vvfl+i517NQQHwDoEH
0lIUi2pEMNEKR6+0MJRE9U/wooCJuWVEPfTdjpS7Mp+mX+5byv4=
=4vBc
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2463-1] samba security update
Next by Date: [SECURITY] [DLA 2465-1] php-pear security update
Previous by thread: [SECURITY] [DLA 2463-1] samba security update
Next by thread: [SECURITY] [DLA 2465-1] php-pear security update
Index(es):
- Date
- Thread