[SECURITY] [DLA 4495-1] thunderbird security update

To: <debian-lts-announce@lists.debian.org>
Subject: [SECURITY] [DLA 4495-1] thunderbird security update
From: Emilio Pozuelo Monfort <pochu@debian.org>
Date: Sat, 28 Feb 2026 19:01:44 +0100
Message-id: <[🔎] 20260228180144.EF4595F00083@kamino>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-4495-1                debian-lts@lists.debian.org
https://www.debian.org/lts/security/               Emilio Pozuelo Monfort
February 28, 2026                             https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : thunderbird
Version        : 1:140.8.0esr-1~deb11u1
CVE ID         : CVE-2026-2757 CVE-2026-2758 CVE-2026-2759 CVE-2026-2761
                 CVE-2026-2762 CVE-2026-2763 CVE-2026-2764 CVE-2026-2765
                 CVE-2026-2766 CVE-2026-2767 CVE-2026-2768 CVE-2026-2769
                 CVE-2026-2770 CVE-2026-2771 CVE-2026-2772 CVE-2026-2773
                 CVE-2026-2774 CVE-2026-2775 CVE-2026-2776 CVE-2026-2777
                 CVE-2026-2778 CVE-2026-2779 CVE-2026-2780 CVE-2026-2781
                 CVE-2026-2782 CVE-2026-2783 CVE-2026-2784 CVE-2026-2785
                 CVE-2026-2786 CVE-2026-2787 CVE-2026-2788 CVE-2026-2789
                 CVE-2026-2790 CVE-2026-2791 CVE-2026-2792 CVE-2026-2793

Multiple security issues were discovered in Thunderbird, which could
result in the execution of arbitrary code or information disclosure.

For Debian 11 bullseye, these problems have been fixed in version
1:140.8.0esr-1~deb11u1.

We recommend that you upgrade your thunderbird packages.

For the detailed security status of thunderbird please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/thunderbird

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAmmjLYUACgkQnUbEiOQ2
gwJIOw/9GtvGkOgOCykbA2Po9LBGyg+S1rECFS9j9ElI/98j09t9UNzh/a210XOQ
YdcyHVe7S/x200j4ym88nbSRZofa2aJrUK5KX+WPlWXe6BteL2oJ/jKOPFFXE1u0
x0Dp6lpP6Y50D8m8gfVK57BYo91Cze30O6hhv2pgQGbN8NqNhAaOuRfes7nilUSd
O3zlakWPkTEApJIh4amjAfGbqInhosrrmxH5XMU7P7G9eMe/vlIFIMpXf6BLiOg3
MU+mZwtcYH6qyjPmh9UCVw+mbYzICF0xk0GaMGyjAiO+dZy0uW8gdaDj0MgGIOxo
67qt+YpBWLTwdIfs+/w9j8efBxJ7qZupoG8xihfrM77ruZeZEawMe4j8BePUVqmA
xaanc+C0Bqch8S1CYtUBN3DlY7TRKmGERyBEvbBqlV7OaObw4F2W/EdHV8/TlasF
hJC1MBYe5y76TCdJvaqH/M58YByRTw+snY/sGN8IMMZI6lwOQikKZFunDzD46Hqo
UTtr+Yeg+uV4fJQUieOEHd9mvQ45NT+y/e4j7+tZilOT6K8rWOeqji0GtglMG9rf
BVbhQ008gWuu1ImbW2xZmW565lR+3q1nrXL2auDE3A5RGxFiNhz+zInCjfOV2KeC
EQH9ZPErHXI7UxOEb1MlvxjtHXLQf6I7Iti6HWqDVvCuKX7dKA4=
=+Bwz
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 4494-1] orthanc security update
Previous by thread: [SECURITY] [DLA 4494-1] orthanc security update
Index(es):
- Date
- Thread