[SECURITY] [DSA 5469-1] thunderbird security update

To: debian-security-announce@lists.debian.org
Subject: [SECURITY] [DSA 5469-1] thunderbird security update
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Sat, 5 Aug 2023 20:47:00 +0000
Message-id: <[🔎] ZM61RDkzPMZqmNLx@seger.debian.org>
Reply-to: debian-security-announce-request@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-5469-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
August 05, 2023                       https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : thunderbird
CVE ID         : CVE-2023-4045 CVE-2023-4046 CVE-2023-4047 CVE-2023-4048 
                 CVE-2023-4049 CVE-2023-4050 CVE-2023-4055 CVE-2023-4056

Multiple security issues were discovered in Thunderbird, which could
result in denial of service or the execution of arbitrary code.

For the oldstable distribution (bullseye), these problems have been fixed
in version 1:102.14.0-1~deb11u1.

For the stable distribution (bookworm), these problems have been fixed in
version 1:102.14.0-1~deb12u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmTOshEACgkQEMKTtsN8
TjZruQ//dyQdCaWxEpxvCFG95f4D66Q1wNLz5BBjlgTNEAdnISM3HwEnercTFDD2
03ZgDzmnhQeLNFCbnXF8j3CxNGKisd9WpWAG8liUHZibhEFcC+7dPVlQbGkSHse3
KHVCHbOMGUEq1h5XDWFmU4yxhhHAbSjDSfakiqv6rYnUIwIwWanU3YmFUdmoYVh0
ck/ztG9GqnCz6lnmhpGXTfMpPGtq2khCkeW5XI240scFlLRNBzggPAPxLM8T5cJP
HLUv5GXx5MeFXQPiG1czdkevWljHVBZIRdIVKmhKepfFHOXt6YbHGFmWOow0cdzL
ELKTsXl9ZlYTGoGVB5tssk2G+GXZ+VqbFXvYRAnxBpt0o79r0o19A7M/p1YxGRsy
xqp5Ouk4Thy7uDb0HN/FzyV2cDUEbZFebxeYEn1/q1RdwmxYTssbmjFGkorPTLvr
sK0tZqgMya5t1TolHh4YMXiiEwffAeNR/t0RQCJgOzujewsJgX4NH2PswcIYUqXR
s1ZlpeZyxsFTvIDLj5WpLNf6cqeKa/YR4PcTbBW0ccxxN0maqYUvYNr9VmnOjWvJ
eIXgwQVIVRWRjyoUmLMx/C0ltSxQyQHNUGKGRDcFWiltvRZhsqJ6e6Fot2GjOI/W
d1u2hYuJ6gXlBoyZp0+jA8vxx8s5c9HwIgnhMIxvG8Q+hZRclKQ=
=NXzk
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DSA 5468-1] webkit2gtk security update
Next by Date: [SECURITY] [DSA 5470-1] python-werkzeug security update
Previous by thread: [SECURITY] [DSA 5468-1] webkit2gtk security update
Next by thread: [SECURITY] [DSA 5470-1] python-werkzeug security update
Index(es):
- Date
- Thread