|
|
Log in / Subscribe / Register

Debian alert DLA-2632-1 (thunderbird)



From:
              Emilio Pozuelo Monfort <pochu@debian.org>


To:
              debian-lts-announce@lists.debian.org


Subject:
              [SECURITY] [DLA 2632-1] thunderbird security update


Date:
              Thu, 22 Apr 2021 12:39:48 +0200


Message-ID:
              <20210422103948.DD7D92A3D0B@andromeda>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2632-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
April 22, 2021                                https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : thunderbird
Version        : 1:78.10.0-1~deb9u1
CVE ID         : CVE-2021-23961 CVE-2021-23991 CVE-2021-23992 CVE-2021-23993 
                 CVE-2021-23994 CVE-2021-23995 CVE-2021-23998 CVE-2021-23999 
                 CVE-2021-24002 CVE-2021-29945 CVE-2021-29946 CVE-2021-29948 
                 CVE-2021-29949

Multiple security issues were discovered in Thunderbird, which could
result in the execution of arbitrary code or information disclosure.
In adddition a number of security issues were addressed in the OpenPGP
support.

For Debian 9 stretch, these problems have been fixed in version
1:78.10.0-1~deb9u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=nlIa
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds