[SECURITY] [DLA 2921-1] thunderbird security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 2921-1] thunderbird security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Mon, 14 Feb 2022 11:07:02 +0100 (CET)
Message-id: <[🔎] 20220214100702.DDEED2A0377@andromeda>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2921-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
February 14, 2022                             https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : thunderbird
Version        : 1:91.6.0-1~deb9u1
CVE ID         : CVE-2022-22754 CVE-2022-22756 CVE-2022-22759 CVE-2022-22760
                 CVE-2022-22761 CVE-2022-22763 CVE-2022-22764

Multiple security issues were discovered in Thunderbird, which could
result in denial of service or the execution of arbitrary code.

For Debian 9 stretch, these problems have been fixed in version
1:91.6.0-1~deb9u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=wUyF
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 2920-1] varnish security update
Next by Date: [SECURITY] [DLA 2922-1] pgbouncer security update
Previous by thread: [SECURITY] [DLA 2920-1] varnish security update
Next by thread: [SECURITY] [DLA 2922-1] pgbouncer security update
Index(es):
- Date
- Thread