[SECURITY] [DLA 3916-1] thunderbird security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 3916-1] thunderbird security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Sat, 12 Oct 2024 12:33:15 +0200
Message-id: <[🔎] 20241012103315.2F5552AAA4B@andromeda>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-3916-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
October 12, 2024                              https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : thunderbird
Version        : 1:115.16.0esr-1~deb11u1
CVE ID         : CVE-2024-9392 CVE-2024-9393 CVE-2024-9394 CVE-2024-9401
                 CVE-2024-9680

Multiple security issues were discovered in Thunderbird, which could
result in the execution of arbitrary code.

For Debian 11 bullseye, these problems have been fixed in version
1:115.16.0esr-1~deb11u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
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=L2dX
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 3914-1] firefox-esr security update
Next by Date: [SECURITY] [DLA 3915-1] libreoffice security update
Previous by thread: [SECURITY] [DLA 3914-1] firefox-esr security update
Next by thread: [SECURITY] [DLA 3915-1] libreoffice security update
Index(es):
- Date
- Thread