Mehrere Probleme in Mozilla Thunderbird
ID: | 202006-19 |
Distribution: | Gentoo |
Plattformen: | Keine Angabe |
Datum: | Mo, 15. Juni 2020, 23:46 |
Referenzen: | https://nvd.nist.gov/vuln/detail/CVE-2020-12410
https://nvd.nist.gov/vuln/detail/CVE-2020-12405 https://www.mozilla.org/en-US/security/advisories/mfsa2020-22/ https://nvd.nist.gov/vuln/detail/CVE-2020-12406 https://nvd.nist.gov/vuln/detail/CVE-2020-12398 |
Applikationen: | Mozilla Thunderbird |
Originalnachricht |
|
--MD+Ffo4VJSI0Ass3 Content-Type: text/plain; charset=utf-8 Content-Disposition: inlin Content-Transfer-Encoding: quoted-printable - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 202006-19 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - https://security.gentoo.org/ - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Severity: Normal Title: Mozilla Thunderbird: Multiple vulnerabilities Date: June 15, 2020 Bugs: #727118 ID: 202006-19 - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Synopsis ======== Multiple vulnerabilities have been found in Mozilla Thunderbird, the worst of which could result in the arbitrary execution of code. Background ========== Mozilla Thunderbird is a popular open-source email client from the Mozilla project. Affected packages ================= ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 mail-client/thunderbird < 68.9.0 >= 68.9.0 2 mail-client/thunderbird-bin < 68.9.0 >= 68.9.0 ------------------------------------------------------------------- 2 affected packages Description =========== Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details. Impact ====== Please review the referenced CVE identifiers for details. Workaround ========== There is no known workaround at this time. Resolution ========== All Mozilla Thunderbird users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=mail-client/thunderbird-68.9.0" All Mozilla Thunderbird binary users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot -v ">=mail-client/thunderbird-bin-68.9.0" References ========== [ 1 ] CVE-2020-12398 https://nvd.nist.gov/vuln/detail/CVE-2020-12398 [ 2 ] CVE-2020-12405 https://nvd.nist.gov/vuln/detail/CVE-2020-12405 [ 3 ] CVE-2020-12406 https://nvd.nist.gov/vuln/detail/CVE-2020-12406 [ 4 ] CVE-2020-12410 https://nvd.nist.gov/vuln/detail/CVE-2020-12410 [ 5 ] MFSA-2020-22 https://www.mozilla.org/en-US/security/advisories/mfsa2020-22/ Availability ============ This GLSA and any updates to it are available for viewing at the Gentoo Security Website: https://security.gentoo.org/glsa/202006-19 Concerns? ========= Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users' machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at https://bugs.gentoo.org. License ======= Copyright 2020 Gentoo Foundation, Inc; referenced text belongs to its owner(s). The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license. https://creativecommons.org/licenses/by-sa/2.5 --MD+Ffo4VJSI0Ass3 Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQEzBAABCAAdFiEEDA48qNrrn8VVVcst4yp5f7HQy3AFAl7nmV0ACgkQ4yp5f7HQ y3CPSwf/cUIm/uxr5jitx6yVeEXa2TCKBPqhgb9Gqejzjs9pECDqPpZH/OE5RE9O Ad2xOpnNxyyLY2n+gko3PqtNlQ4iyAVLVZ08AQd+ZKTNm7tR3jqhOrbvmrrcaqaG vGSXc3ECZWWXjM0wy9J3LQ7Yls3BeeuZDZ6l41DOjZ2O0VHK6U716+wT1JRpW6Kb 70cdY7ZEpebQr9RhgrWzuDhdfPzmD5ON6LY0WtvCFVw3GbYtuDIqe9+GqjjxzvEz 6lWhkEkMjyE/6nUVCbMayqEP+pUjkDWFH/FIE135YFmUGnu9NBjtu0SRuzlTZXh5 NAW1D/oAgG0mL9N9UoHa6Lz/hNJktg== =Rswx -----END PGP SIGNATURE----- --MD+Ffo4VJSI0Ass3-- |