GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Wed Dec 09, 2020 6:26 pm Post subject: [ GLSA 202012-04 ] Mozilla Thunderbird |
 |
|
Gentoo Linux Security Advisory
Title: Mozilla Thunderbird: Multiple vulnerabilities (GLSA 202012-04)
Severity: normal
Exploitable: local, remote
Date: 2020-12-07
Bug(s): #758857
ID: 202012-04
Synopsis
Multiple vulnerabilities have been found in Mozilla Thunderbird,
the worst of which could lead to the execution of arbitrary code.
Background
Mozilla Thunderbird is a popular open-source email client from the
Mozilla project.
Affected Packages
Package: mail-client/thunderbird
Vulnerable: < 78.5.1
Unaffected: >= 78.5.1
Architectures: All supported architectures
Package: mail-client/thunderbird-bin
Vulnerable: < 78.5.1
Unaffected: >= 78.5.1
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in Mozilla Thunderbird.
Please review the referenced Mozilla Foundation Security Advisories and
CVE identifiers below for details.
Impact
Please review the referenced CVE identifiers for details.
Workaround
There is no known workaround at this time.
Resolution
All Mozilla Thunderbird users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=mail-client/thunderbird-78.5.1"
|
All Mozilla Thunderbird binary users should upgrade to the latest
version:
| Code: | # emerge --sync
# emerge --ask --oneshot --verbose
">=mail-client/thunderbird-bin-78.5.1"
|
References
Mozilla Foundation Security Advisory 2020-52
Mozilla Foundation Security Advisory 2020-53
CVE-2020-15999
CVE-2020-16012
CVE-2020-26951
CVE-2020-26953
CVE-2020-26956
CVE-2020-26958
CVE-2020-26959
CVE-2020-26960
CVE-2020-26961
CVE-2020-26965
CVE-2020-26968
CVE-2020-26970 |
|
News & Announcements
