[SECURITY] [DSA 5195-1] thunderbird security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 5195-1] thunderbird security update
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Sat, 30 Jul 2022 18:13:05 +0000
Message-id: <[🔎] 20220730181305.GA19061@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5195-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
July 30, 2022                         https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : thunderbird
CVE ID         : CVE-2022-36318 CVE-2022-36319

Multiple security issues were discovered in Thunderbird, which could
result in spoofing.

For the oldstable distribution (buster), these problems have been fixed
in version 1:91.12.0-1~deb10u1.

For the stable distribution (bullseye), these problems have been fixed in
version 1:91.12.0-1~deb11u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=5DKJ
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 5194-1] booth security update
Next by Date: [SECURITY] [DSA 5196-1] libpgjava security update
Previous by thread: [SECURITY] [DSA 5194-1] booth security update
Next by thread: [SECURITY] [DSA 5196-1] libpgjava security update
Index(es):
- Date
- Thread